52f6b70f9d6a6655a67889ac24d7f289664475a58267c41b9aeb44b8bab6af63 | Triage

Sharing

General

Target

571b0676231872c0c96b4c8770a90dbd_JaffaCakes118
Size

13KB
Sample

241018-m8635aweml
MD5

571b0676231872c0c96b4c8770a90dbd
SHA1

fd29b03e907b798d0f262999c98aebb427a1ada9
SHA256

52f6b70f9d6a6655a67889ac24d7f289664475a58267c41b9aeb44b8bab6af63
SHA512

e90aa0223d45b80bcc50e536eac552cfc6aa462eeda7e70c0b53fb10b01dd4603ff5003d30a616dbec959064cc165e6239b39147f36dbd2bae6262a7aff301f4
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhB:hDXWipuE+K3/SSHgx3

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  571b0676231872c0c96b4c8770a90dbd_JaffaCakes118
- Size
  
  13KB
- MD5
  
  571b0676231872c0c96b4c8770a90dbd
- SHA1
  
  fd29b03e907b798d0f262999c98aebb427a1ada9
- SHA256
  
  52f6b70f9d6a6655a67889ac24d7f289664475a58267c41b9aeb44b8bab6af63
- SHA512
  
  e90aa0223d45b80bcc50e536eac552cfc6aa462eeda7e70c0b53fb10b01dd4603ff5003d30a616dbec959064cc165e6239b39147f36dbd2bae6262a7aff301f4
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhB:hDXWipuE+K3/SSHgx3
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2