cb0cb5250c490f9ef86765e509f7eed24e094bbccd7682290ee8ba216a293ec0 | Triage

Sharing

General

Target

29806262f2866ad3834e4d5856f4b198_JaffaCakes118
Size

15KB
Sample

241009-db8e9a1crg
MD5

29806262f2866ad3834e4d5856f4b198
SHA1

393940584268acc11b92498591b125ec5a3f39b5
SHA256

cb0cb5250c490f9ef86765e509f7eed24e094bbccd7682290ee8ba216a293ec0
SHA512

6fb6ccd48ae0588b048a7d4c7d2c591b4cbecf7448820681380b21802bd613423fa68ea21e97ba2cb88a59ff50cc13c5f192d2d8370fb7c003fa1ae4c145b2ef
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxA:hDXWipuE+K3/SSHgxmHa

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  29806262f2866ad3834e4d5856f4b198_JaffaCakes118
- Size
  
  15KB
- MD5
  
  29806262f2866ad3834e4d5856f4b198
- SHA1
  
  393940584268acc11b92498591b125ec5a3f39b5
- SHA256
  
  cb0cb5250c490f9ef86765e509f7eed24e094bbccd7682290ee8ba216a293ec0
- SHA512
  
  6fb6ccd48ae0588b048a7d4c7d2c591b4cbecf7448820681380b21802bd613423fa68ea21e97ba2cb88a59ff50cc13c5f192d2d8370fb7c003fa1ae4c145b2ef
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxA:hDXWipuE+K3/SSHgxmHa
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2