2cd4e54465ecbc47f9e09ef920a05c43ff193f3a21be5fb041aa7174f26dedda | Triage

Sharing

General

Target

2a3c1a8e82a47138e1fdddf3e9f8bf8e_JaffaCakes118
Size

14KB
Sample

241009-ebnlhsscql
MD5

2a3c1a8e82a47138e1fdddf3e9f8bf8e
SHA1

bcf4cf04330416ee7f9dfe5bf8b1472664163cef
SHA256

2cd4e54465ecbc47f9e09ef920a05c43ff193f3a21be5fb041aa7174f26dedda
SHA512

12a95d7f642adbd7561316e93a92b1c5941cf34e7a03c8f7508304996b5250f1dc7212c8a16747e23342380e06f0ebdf8f9104e3317ae693b17dfbcec049d3b3
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5m:hDXWipuE+K3/SSHgxmc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2a3c1a8e82a47138e1fdddf3e9f8bf8e_JaffaCakes118
- Size
  
  14KB
- MD5
  
  2a3c1a8e82a47138e1fdddf3e9f8bf8e
- SHA1
  
  bcf4cf04330416ee7f9dfe5bf8b1472664163cef
- SHA256
  
  2cd4e54465ecbc47f9e09ef920a05c43ff193f3a21be5fb041aa7174f26dedda
- SHA512
  
  12a95d7f642adbd7561316e93a92b1c5941cf34e7a03c8f7508304996b5250f1dc7212c8a16747e23342380e06f0ebdf8f9104e3317ae693b17dfbcec049d3b3
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5m:hDXWipuE+K3/SSHgxmc
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2