ea2c0438bc6d8609438e978fe6cab70c63abb7c4411d96bc71bc2b2ef2fe14a7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4537718c32721317aa592754fc93460c_JaffaCakes118
Size

636KB
Sample

241015-b6l5dsxeqe
MD5

4537718c32721317aa592754fc93460c
SHA1

7923a20c0699cb354289558e5b37a36f8c105ef8
SHA256

ea2c0438bc6d8609438e978fe6cab70c63abb7c4411d96bc71bc2b2ef2fe14a7
SHA512

61d0fa19514294fa2ad0a5eb3644b83da942f6cee9de2a905813e77c9f6186b5688ca2e6c27542697dcc021f9e4b9be85b23a3b19e56900891531634dfce6072
SSDEEP

6144:k4jl/wndfF/gl0LQIk8DR3dEuAI7pEfxsZozA:kqlonxOp8FySpE5z

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  4537718c32721317aa592754fc93460c_JaffaCakes118
- Size
  
  636KB
- MD5
  
  4537718c32721317aa592754fc93460c
- SHA1
  
  7923a20c0699cb354289558e5b37a36f8c105ef8
- SHA256
  
  ea2c0438bc6d8609438e978fe6cab70c63abb7c4411d96bc71bc2b2ef2fe14a7
- SHA512
  
  61d0fa19514294fa2ad0a5eb3644b83da942f6cee9de2a905813e77c9f6186b5688ca2e6c27542697dcc021f9e4b9be85b23a3b19e56900891531634dfce6072
- SSDEEP
  
  6144:k4jl/wndfF/gl0LQIk8DR3dEuAI7pEfxsZozA:kqlonxOp8FySpE5z
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2