e8817332c02eff84993bd17b2f909c7c028b815f9d13ccacb3f58d48ad549da9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3b169b12072edcb835844124a9cf4177_JaffaCakes118
Size

164KB
Sample

241012-vc4bcs1ang
MD5

3b169b12072edcb835844124a9cf4177
SHA1

14f1d258a4a7e7d974ead84d71bbba2fc187dfd8
SHA256

e8817332c02eff84993bd17b2f909c7c028b815f9d13ccacb3f58d48ad549da9
SHA512

c8c5f21ab5f698993a4340ca85c0903f168bf98e18d2ebac5a6066c174ddcad44ff363b8d0047ff2930c24d5ceb28c0d97adb19a1b7936f49131a74579e0493c
SSDEEP

3072:BimnuVXjzu3vsLrP5voun/VqIoKJfma7tYEoFMhYg:fulu3vsPfdqIoK0a7BKg

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3b169b12072edcb835844124a9cf4177_JaffaCakes118
- Size
  
  164KB
- MD5
  
  3b169b12072edcb835844124a9cf4177
- SHA1
  
  14f1d258a4a7e7d974ead84d71bbba2fc187dfd8
- SHA256
  
  e8817332c02eff84993bd17b2f909c7c028b815f9d13ccacb3f58d48ad549da9
- SHA512
  
  c8c5f21ab5f698993a4340ca85c0903f168bf98e18d2ebac5a6066c174ddcad44ff363b8d0047ff2930c24d5ceb28c0d97adb19a1b7936f49131a74579e0493c
- SSDEEP
  
  3072:BimnuVXjzu3vsLrP5voun/VqIoKJfma7tYEoFMhYg:fulu3vsPfdqIoK0a7BKg
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops desktop.ini file(s)
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2