60856fe8482547c19e743a1ccfa6264c8d2f6584ab2764019c43d32df46d7cd4 | Triage

Sharing

General

Target

17ce1129878d4a18b153c487f87f4f50_JaffaCakes118
Size

14KB
Sample

241006-m2vrhsvcpd
MD5

17ce1129878d4a18b153c487f87f4f50
SHA1

bbf24086466ed820af34d2e7ba46b91096c32477
SHA256

60856fe8482547c19e743a1ccfa6264c8d2f6584ab2764019c43d32df46d7cd4
SHA512

d57aa78751492e176f50302b8061676ed957dcd08c041627d1dff438cea2a7eb50f88a6c2b01ab8c185a01bf510123c1d84ed03be3d75b74d30b60d38ab61ae1
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh0:hDXWipuE+K3/SSHgxS

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  17ce1129878d4a18b153c487f87f4f50_JaffaCakes118
- Size
  
  14KB
- MD5
  
  17ce1129878d4a18b153c487f87f4f50
- SHA1
  
  bbf24086466ed820af34d2e7ba46b91096c32477
- SHA256
  
  60856fe8482547c19e743a1ccfa6264c8d2f6584ab2764019c43d32df46d7cd4
- SHA512
  
  d57aa78751492e176f50302b8061676ed957dcd08c041627d1dff438cea2a7eb50f88a6c2b01ab8c185a01bf510123c1d84ed03be3d75b74d30b60d38ab61ae1
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh0:hDXWipuE+K3/SSHgxS
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2