022b9a447ecf805190573a51246ccd3423cc52ac1949344c0a55b301711840f1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

53dc455a7fee4541d9058103e54d9b4b_JaffaCakes118
Size

70KB
Sample

241017-1gzrma1cjl
MD5

53dc455a7fee4541d9058103e54d9b4b
SHA1

8c8b92b8a79c5357df3ff05313018abe114fac20
SHA256

022b9a447ecf805190573a51246ccd3423cc52ac1949344c0a55b301711840f1
SHA512

d4a430ef04f22b47dc0b1b96df1780d1af17206977974bb3e386bcd04cc2016e13e62f923ce11aa5f76e5c7de9bcb17aa5bac9f0e2ec1e98913d50ad80d3e867
SSDEEP

768:/kKpisvuzgdwMG9hl7c1M5uEcnZ99AOZWEJ/y+ap385BRCwBqcqZkwZEn4LZ7:MKplSbm1rtAOZF/eMZCkqrZkkEn49

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  53dc455a7fee4541d9058103e54d9b4b_JaffaCakes118
- Size
  
  70KB
- MD5
  
  53dc455a7fee4541d9058103e54d9b4b
- SHA1
  
  8c8b92b8a79c5357df3ff05313018abe114fac20
- SHA256
  
  022b9a447ecf805190573a51246ccd3423cc52ac1949344c0a55b301711840f1
- SHA512
  
  d4a430ef04f22b47dc0b1b96df1780d1af17206977974bb3e386bcd04cc2016e13e62f923ce11aa5f76e5c7de9bcb17aa5bac9f0e2ec1e98913d50ad80d3e867
- SSDEEP
  
  768:/kKpisvuzgdwMG9hl7c1M5uEcnZ99AOZWEJ/y+ap385BRCwBqcqZkwZEn4LZ7:MKplSbm1rtAOZF/eMZCkqrZkkEn49
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2