d83e4e33bfed01e94a723b3b3c0acc112678a66d71505db203da28fc56ab2f39 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

547bd2bd51ebcf15e770df74f2ab1b2d_JaffaCakes118
Size

14KB
Sample

241018-avwzsaybrl
MD5

547bd2bd51ebcf15e770df74f2ab1b2d
SHA1

bdfbc9b0af5e451236b037e86438669a57dbd5a9
SHA256

d83e4e33bfed01e94a723b3b3c0acc112678a66d71505db203da28fc56ab2f39
SHA512

0e943d983481a0e9d0ed2ee0282d57c2ffd4f4cb22dc6b563f2a83856b1f464c94887f530cf25e549a3a196cd3e3d650df3b8ab32bb3ecdee9805842358e1fee
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4v8U:hDXWipuE+K3/SSHgxm0b

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  547bd2bd51ebcf15e770df74f2ab1b2d_JaffaCakes118
- Size
  
  14KB
- MD5
  
  547bd2bd51ebcf15e770df74f2ab1b2d
- SHA1
  
  bdfbc9b0af5e451236b037e86438669a57dbd5a9
- SHA256
  
  d83e4e33bfed01e94a723b3b3c0acc112678a66d71505db203da28fc56ab2f39
- SHA512
  
  0e943d983481a0e9d0ed2ee0282d57c2ffd4f4cb22dc6b563f2a83856b1f464c94887f530cf25e549a3a196cd3e3d650df3b8ab32bb3ecdee9805842358e1fee
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4v8U:hDXWipuE+K3/SSHgxm0b
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2