cddb37fb15b785cda9aa0ee177f934294054fa58c21720a063f6bf5ddd968cb5 | Triage

Sharing

General

Target

523192e9aba390ef00648935f2d76e8e_JaffaCakes118
Size

14KB
Sample

241017-qje5wssdpn
MD5

523192e9aba390ef00648935f2d76e8e
SHA1

b68131fa3bb3d0a061718768f0523bbcfa1e3d60
SHA256

cddb37fb15b785cda9aa0ee177f934294054fa58c21720a063f6bf5ddd968cb5
SHA512

a8ac54a5b9f0ea42645af79669e475ebf716c75361cb1ef583dc60a1e3046bd3e7bb093f58089759c4987b47e61ce508bb74cfb962b1dce4f94c82599d10cca5
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYyOQX:hDXWipuE+K3/SSHgxmyOQX

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  523192e9aba390ef00648935f2d76e8e_JaffaCakes118
- Size
  
  14KB
- MD5
  
  523192e9aba390ef00648935f2d76e8e
- SHA1
  
  b68131fa3bb3d0a061718768f0523bbcfa1e3d60
- SHA256
  
  cddb37fb15b785cda9aa0ee177f934294054fa58c21720a063f6bf5ddd968cb5
- SHA512
  
  a8ac54a5b9f0ea42645af79669e475ebf716c75361cb1ef583dc60a1e3046bd3e7bb093f58089759c4987b47e61ce508bb74cfb962b1dce4f94c82599d10cca5
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYyOQX:hDXWipuE+K3/SSHgxmyOQX
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2