90eaf87fa7bc71569867eaa901657bab6a4d67c8b8d0ffc0863decc1de2f432a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3af86410c2ea1ec1e0a868c73be0554c_JaffaCakes118
Size

14KB
Sample

241012-tt757steqn
MD5

3af86410c2ea1ec1e0a868c73be0554c
SHA1

520c63e714bc25e3e1472883d896e87456d0f5c5
SHA256

90eaf87fa7bc71569867eaa901657bab6a4d67c8b8d0ffc0863decc1de2f432a
SHA512

14084a22531a5ebd89ac143af0d604709927b4ee7a3e266f043a03859c55a7a848abc1e2017cc4d7ee51d54e892f7758d8139829ee787140b31eaa294dacea9f
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5Z:hDXWipuE+K3/SSHgxmz

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3af86410c2ea1ec1e0a868c73be0554c_JaffaCakes118
- Size
  
  14KB
- MD5
  
  3af86410c2ea1ec1e0a868c73be0554c
- SHA1
  
  520c63e714bc25e3e1472883d896e87456d0f5c5
- SHA256
  
  90eaf87fa7bc71569867eaa901657bab6a4d67c8b8d0ffc0863decc1de2f432a
- SHA512
  
  14084a22531a5ebd89ac143af0d604709927b4ee7a3e266f043a03859c55a7a848abc1e2017cc4d7ee51d54e892f7758d8139829ee787140b31eaa294dacea9f
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5Z:hDXWipuE+K3/SSHgxmz
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2