dfd730eb6c32392d1449f2d8b3da9d56e9f0fa9dd1517bddee4b5a48723bfff5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2734b458d54375c31a90faeec46a7691_JaffaCakes118
Size

14KB
Sample

241008-3qjswazarj
MD5

2734b458d54375c31a90faeec46a7691
SHA1

68c676b81b9de9cbc88c261cc4d343cc858d921d
SHA256

dfd730eb6c32392d1449f2d8b3da9d56e9f0fa9dd1517bddee4b5a48723bfff5
SHA512

51916ba5fd2b2b364fe6d36ea99ac8c4ed1d986a84dfa303482bf6dc9826e602031ccad79c8f08a62578c1fd1deecd1d41a70df25127928d5dcce4a07d571f63
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY7:hDXWipuE+K3/SSHgxm7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2734b458d54375c31a90faeec46a7691_JaffaCakes118
- Size
  
  14KB
- MD5
  
  2734b458d54375c31a90faeec46a7691
- SHA1
  
  68c676b81b9de9cbc88c261cc4d343cc858d921d
- SHA256
  
  dfd730eb6c32392d1449f2d8b3da9d56e9f0fa9dd1517bddee4b5a48723bfff5
- SHA512
  
  51916ba5fd2b2b364fe6d36ea99ac8c4ed1d986a84dfa303482bf6dc9826e602031ccad79c8f08a62578c1fd1deecd1d41a70df25127928d5dcce4a07d571f63
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY7:hDXWipuE+K3/SSHgxm7
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2