80f9916331161df26da16fb358f5ced016ada8a53702c7d076058146fb7d417b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15ffed2d24ae93956df347e1d306c781_JaffaCakes118
Size

14KB
Sample

241005-d4ezeashqr
MD5

15ffed2d24ae93956df347e1d306c781
SHA1

95f92ec3b264bd75c1dd2effde7be54d4d82b338
SHA256

80f9916331161df26da16fb358f5ced016ada8a53702c7d076058146fb7d417b
SHA512

f26a1fab07ed2af4473c9ddbe0f0fd6415257eb090dd729c4e445df26acfd4f8142fb5621226ef4875263a1f6459bd48f7e3040ae034567dce262e6a697847cc
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhKa:hDXWipuE+K3/SSHgxp

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  15ffed2d24ae93956df347e1d306c781_JaffaCakes118
- Size
  
  14KB
- MD5
  
  15ffed2d24ae93956df347e1d306c781
- SHA1
  
  95f92ec3b264bd75c1dd2effde7be54d4d82b338
- SHA256
  
  80f9916331161df26da16fb358f5ced016ada8a53702c7d076058146fb7d417b
- SHA512
  
  f26a1fab07ed2af4473c9ddbe0f0fd6415257eb090dd729c4e445df26acfd4f8142fb5621226ef4875263a1f6459bd48f7e3040ae034567dce262e6a697847cc
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhKa:hDXWipuE+K3/SSHgxp
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2