fa7c01f3963cf5a30f8b5365102bc3ca4753414404ffd34df5ff5f66d50dfe83 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3abc202908089cd060934907b3fe7141_JaffaCakes118
Size

28KB
Sample

241012-sq6brs1gnk
MD5

3abc202908089cd060934907b3fe7141
SHA1

b7764c1ac7cbe9dfd66207fd4c0023d7d98155b8
SHA256

fa7c01f3963cf5a30f8b5365102bc3ca4753414404ffd34df5ff5f66d50dfe83
SHA512

de3f33b7b1508d00050e7ff6e43a2049466f1bcad71856bf22462d67e7665a7f61f51bb0fca6431d82bf1f3ef366e0fb2067055750e648ba47a42f1e9550e15c
SSDEEP

384:OG4TebV6dbuoh1kX681FN6BAZAHh6yCqXKKsqHx7Z8:Ieb0brB81FQ/Hh6kr8

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3abc202908089cd060934907b3fe7141_JaffaCakes118
- Size
  
  28KB
- MD5
  
  3abc202908089cd060934907b3fe7141
- SHA1
  
  b7764c1ac7cbe9dfd66207fd4c0023d7d98155b8
- SHA256
  
  fa7c01f3963cf5a30f8b5365102bc3ca4753414404ffd34df5ff5f66d50dfe83
- SHA512
  
  de3f33b7b1508d00050e7ff6e43a2049466f1bcad71856bf22462d67e7665a7f61f51bb0fca6431d82bf1f3ef366e0fb2067055750e648ba47a42f1e9550e15c
- SSDEEP
  
  384:OG4TebV6dbuoh1kX681FN6BAZAHh6yCqXKKsqHx7Z8:Ieb0brB81FQ/Hh6kr8
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2