651357b39854dde06a526cb37836264a7df605911ce589c848c2e4120ae965d4 | Triage

Sharing

General

Target

3cdacb6ab5121019143c5c96e67f2000_JaffaCakes118
Size

14KB
Sample

241013-aw6wdazeja
MD5

3cdacb6ab5121019143c5c96e67f2000
SHA1

6d0aacb61a250492c118915902ee747d7bc82d98
SHA256

651357b39854dde06a526cb37836264a7df605911ce589c848c2e4120ae965d4
SHA512

f87aaef1ca9fab141eb976db4360bf510b8358801a4f59b181ab6ac48db2ede43bd50559f79418b46ba94bf7552b0086ad38ac3b47c75ec6d1e286286cfa7ade
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5S:hDXWipuE+K3/SSHgxm0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  3cdacb6ab5121019143c5c96e67f2000_JaffaCakes118
- Size
  
  14KB
- MD5
  
  3cdacb6ab5121019143c5c96e67f2000
- SHA1
  
  6d0aacb61a250492c118915902ee747d7bc82d98
- SHA256
  
  651357b39854dde06a526cb37836264a7df605911ce589c848c2e4120ae965d4
- SHA512
  
  f87aaef1ca9fab141eb976db4360bf510b8358801a4f59b181ab6ac48db2ede43bd50559f79418b46ba94bf7552b0086ad38ac3b47c75ec6d1e286286cfa7ade
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5S:hDXWipuE+K3/SSHgxm0
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2