333e6c381cf515d11f28828ee8a033540894e2f02d1afcb17d239039591ac9a7 | Triage

Sharing

General

Target

2f4998657c1318c014fac873cca43763_JaffaCakes118
Size

14KB
Sample

241009-l9ngqsycjj
MD5

2f4998657c1318c014fac873cca43763
SHA1

3b3c81356ff8d0f320abd267414332dad9887a2d
SHA256

333e6c381cf515d11f28828ee8a033540894e2f02d1afcb17d239039591ac9a7
SHA512

a941ee1248195948413a543d0ea5e83900d4fdb953974a5fdba8dd27fa77d6275df892010fa31fc2e25b44711bc5edd691ee91a89ce9fd1c3fec1012d8ec0adb
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhR0K6:hDXWipuE+K3/SSHgx4K6

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2f4998657c1318c014fac873cca43763_JaffaCakes118
- Size
  
  14KB
- MD5
  
  2f4998657c1318c014fac873cca43763
- SHA1
  
  3b3c81356ff8d0f320abd267414332dad9887a2d
- SHA256
  
  333e6c381cf515d11f28828ee8a033540894e2f02d1afcb17d239039591ac9a7
- SHA512
  
  a941ee1248195948413a543d0ea5e83900d4fdb953974a5fdba8dd27fa77d6275df892010fa31fc2e25b44711bc5edd691ee91a89ce9fd1c3fec1012d8ec0adb
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhR0K6:hDXWipuE+K3/SSHgx4K6
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2