dd40156bb590a67efd281860ba3e8a9b27fc51258cd784c983f9e1ac0700b332 | Triage

Sharing

General

Target

3b6d83310ed0b07a71a362a21663d3a0_JaffaCakes118
Size

15KB
Sample

241012-wxmd1sydmk
MD5

3b6d83310ed0b07a71a362a21663d3a0
SHA1

b912e6f5c7a8dcf15f4cfb95275795d49dd2f1c1
SHA256

dd40156bb590a67efd281860ba3e8a9b27fc51258cd784c983f9e1ac0700b332
SHA512

a1535c0b6b1534733494b524a1f1ae2091c31cc6dee048afab626bf3342b298171a3879fe51b1c161656b7dc3f92af5f1dc3de4a2dc15af1a34a85f9e1c1cf83
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxU:hDXWipuE+K3/SSHgxmHC

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3b6d83310ed0b07a71a362a21663d3a0_JaffaCakes118
- Size
  
  15KB
- MD5
  
  3b6d83310ed0b07a71a362a21663d3a0
- SHA1
  
  b912e6f5c7a8dcf15f4cfb95275795d49dd2f1c1
- SHA256
  
  dd40156bb590a67efd281860ba3e8a9b27fc51258cd784c983f9e1ac0700b332
- SHA512
  
  a1535c0b6b1534733494b524a1f1ae2091c31cc6dee048afab626bf3342b298171a3879fe51b1c161656b7dc3f92af5f1dc3de4a2dc15af1a34a85f9e1c1cf83
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxU:hDXWipuE+K3/SSHgxmHC
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2