1014b6ff9c9a4e8b83d4bd707980f337566a9ee34c971dc7cf537cb2d4ca88ca | Triage

Sharing

General

Target

2a27e93605c5d0168a5d8a10be858013_JaffaCakes118
Size

14KB
Sample

241009-d8ty5a1hkj
MD5

2a27e93605c5d0168a5d8a10be858013
SHA1

2dff4df9f05d87cf24714cfbb0de9bbc11291923
SHA256

1014b6ff9c9a4e8b83d4bd707980f337566a9ee34c971dc7cf537cb2d4ca88ca
SHA512

f9ad3272c95905e618cc7114156e61236991e755f255799cdf4556cb3bb4afe73552df6b88d2d4ad88ae4fe7452eade12a06ca3780b38aef6ee6bdff66b7613c
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZKa:hDXWipuE+K3/SSHgx3b

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2a27e93605c5d0168a5d8a10be858013_JaffaCakes118
- Size
  
  14KB
- MD5
  
  2a27e93605c5d0168a5d8a10be858013
- SHA1
  
  2dff4df9f05d87cf24714cfbb0de9bbc11291923
- SHA256
  
  1014b6ff9c9a4e8b83d4bd707980f337566a9ee34c971dc7cf537cb2d4ca88ca
- SHA512
  
  f9ad3272c95905e618cc7114156e61236991e755f255799cdf4556cb3bb4afe73552df6b88d2d4ad88ae4fe7452eade12a06ca3780b38aef6ee6bdff66b7613c
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZKa:hDXWipuE+K3/SSHgx3b
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2