747f15764b98726716d2d41b1e30700f9ba68171efeb3d1e1b90cef671f9269e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

17832589ebb359e770b3d178033529ca_JaffaCakes118
Size

14KB
Sample

241005-nmhn3swfrb
MD5

17832589ebb359e770b3d178033529ca
SHA1

6fc5c1be1c7eb03b90bd0665558d1a19aa130380
SHA256

747f15764b98726716d2d41b1e30700f9ba68171efeb3d1e1b90cef671f9269e
SHA512

32b371fad5fd1cc89d63aba57be9fe862bbebcf9f3a720f45ca9609c761eed8f45b38daf5e4ae17da57ca5f67d5e37c6d4f7dc1e2db23c7105dd05d1ee307e34
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5q:hDXWipuE+K3/SSHgxmo

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  17832589ebb359e770b3d178033529ca_JaffaCakes118
- Size
  
  14KB
- MD5
  
  17832589ebb359e770b3d178033529ca
- SHA1
  
  6fc5c1be1c7eb03b90bd0665558d1a19aa130380
- SHA256
  
  747f15764b98726716d2d41b1e30700f9ba68171efeb3d1e1b90cef671f9269e
- SHA512
  
  32b371fad5fd1cc89d63aba57be9fe862bbebcf9f3a720f45ca9609c761eed8f45b38daf5e4ae17da57ca5f67d5e37c6d4f7dc1e2db23c7105dd05d1ee307e34
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5q:hDXWipuE+K3/SSHgxmo
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2