5f31ebf2795ab71be8459b5930c2b59d927a0f545be1584fce4b2a03680967ff | Triage

Sharing

General

Target

2ac3127aba63d1f2b05ce2c5905cd5aa_JaffaCakes118
Size

165KB
Sample

241009-e1jc4azhnc
MD5

2ac3127aba63d1f2b05ce2c5905cd5aa
SHA1

53916decdcd3e184745ed73bc3cbb93987f66705
SHA256

5f31ebf2795ab71be8459b5930c2b59d927a0f545be1584fce4b2a03680967ff
SHA512

452dfc1b2818921da6e203f9a84797fa61ee96c7256aeebcf4887d3b0a8557b7007c8c559b9290d0710847138c2821b4ff340c906f40e6cd6a406c12ed2278b7
SSDEEP

3072:84HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:TiI/PlY37ZLF4Ca6WABqBOvs

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2ac3127aba63d1f2b05ce2c5905cd5aa_JaffaCakes118
- Size
  
  165KB
- MD5
  
  2ac3127aba63d1f2b05ce2c5905cd5aa
- SHA1
  
  53916decdcd3e184745ed73bc3cbb93987f66705
- SHA256
  
  5f31ebf2795ab71be8459b5930c2b59d927a0f545be1584fce4b2a03680967ff
- SHA512
  
  452dfc1b2818921da6e203f9a84797fa61ee96c7256aeebcf4887d3b0a8557b7007c8c559b9290d0710847138c2821b4ff340c906f40e6cd6a406c12ed2278b7
- SSDEEP
  
  3072:84HCWau/PlYeuL7ZLFh6Ca6cbL9l2hzB3fJCC6j8+Er6ez4:TiI/PlY37ZLF4Ca6WABqBOvs
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2