67e264fdb982e496e2b954ea95bffb57adbd901a91959ac0347028fe001fc62b | Triage

Sharing

General

Target

52d4b7374da6e1600d1c607f8295faf6_JaffaCakes118
Size

84KB
Sample

241017-vx3kkazckr
MD5

52d4b7374da6e1600d1c607f8295faf6
SHA1

67b30bc431bd9bc38d1d2983cf2dc42583267a72
SHA256

67e264fdb982e496e2b954ea95bffb57adbd901a91959ac0347028fe001fc62b
SHA512

e748693ab02a1002408438586c772064255b7c3bb828965e1299795f034723bdf6dac15b5ab6ad3ed9ee2eb3c5b437de8c7e5b90ced58828592d0a905ccac9b9
SSDEEP

1536:F+uwqEPnAClrVLTrEqNAxvXsf7rzV/KpX5ZyqhS/1shyo:F+20xlrVwqNAd8f7IpXXS/1wb

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  52d4b7374da6e1600d1c607f8295faf6_JaffaCakes118
- Size
  
  84KB
- MD5
  
  52d4b7374da6e1600d1c607f8295faf6
- SHA1
  
  67b30bc431bd9bc38d1d2983cf2dc42583267a72
- SHA256
  
  67e264fdb982e496e2b954ea95bffb57adbd901a91959ac0347028fe001fc62b
- SHA512
  
  e748693ab02a1002408438586c772064255b7c3bb828965e1299795f034723bdf6dac15b5ab6ad3ed9ee2eb3c5b437de8c7e5b90ced58828592d0a905ccac9b9
- SSDEEP
  
  1536:F+uwqEPnAClrVLTrEqNAxvXsf7rzV/KpX5ZyqhS/1shyo:F+20xlrVwqNAd8f7IpXXS/1wb
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2