3a42acb6d12ace9eaa38d9a46a6fc331b0a467daf10487d453478581b31a1c56 | Triage

Sharing

General

Target

3936097eab77cb5e841d14a40a0806cb_JaffaCakes118
Size

14KB
Sample

241012-ktzz6axbnp
MD5

3936097eab77cb5e841d14a40a0806cb
SHA1

f1f7a45550eec3e72bc4efc670bede0170f88b69
SHA256

3a42acb6d12ace9eaa38d9a46a6fc331b0a467daf10487d453478581b31a1c56
SHA512

f2f9e1d34049a8008a197d2727401fcc517ed919911cb705dafd617a3a0b7a163030555f776f3e4a2e2275d4fe588d2228da980181832fbffcf4530fc8bec5d2
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv/ZX:hDXWipuE+K3/SSHgxlR

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3936097eab77cb5e841d14a40a0806cb_JaffaCakes118
- Size
  
  14KB
- MD5
  
  3936097eab77cb5e841d14a40a0806cb
- SHA1
  
  f1f7a45550eec3e72bc4efc670bede0170f88b69
- SHA256
  
  3a42acb6d12ace9eaa38d9a46a6fc331b0a467daf10487d453478581b31a1c56
- SHA512
  
  f2f9e1d34049a8008a197d2727401fcc517ed919911cb705dafd617a3a0b7a163030555f776f3e4a2e2275d4fe588d2228da980181832fbffcf4530fc8bec5d2
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv/ZX:hDXWipuE+K3/SSHgxlR
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2