65901cd2d607fb034674bb84e9d9d2e911ce2e8e0676dc08b2f3649129d93c33 | Triage

Sharing

General

Target

b4efa6d2869629fdc54ff35ade6ca321_JaffaCakes118
Size

506KB
Sample

241130-fwjzhatqdx
MD5

b4efa6d2869629fdc54ff35ade6ca321
SHA1

5ee1ab8e98c16fef6bfa1f8f6f808c8f5aa4026e
SHA256

65901cd2d607fb034674bb84e9d9d2e911ce2e8e0676dc08b2f3649129d93c33
SHA512

ea1856e02dfbbda0ed5e3bdfde31cd8b92cc135adfac2601a233c629d06161fd9be2aacd29278962ad369158ddb4026be145fd94f14d70c859852305b5f83693
SSDEEP

12288:mutrzh9xOXkYZcZxkXAPCfjFahGf+buZkDgLxJiXUbARkNmGozI:mutr5OUYZaaOkFahGfOf8NJNA2MGo8

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b4efa6d2869629fdc54ff35ade6ca321_JaffaCakes118
- Size
  
  506KB
- MD5
  
  b4efa6d2869629fdc54ff35ade6ca321
- SHA1
  
  5ee1ab8e98c16fef6bfa1f8f6f808c8f5aa4026e
- SHA256
  
  65901cd2d607fb034674bb84e9d9d2e911ce2e8e0676dc08b2f3649129d93c33
- SHA512
  
  ea1856e02dfbbda0ed5e3bdfde31cd8b92cc135adfac2601a233c629d06161fd9be2aacd29278962ad369158ddb4026be145fd94f14d70c859852305b5f83693
- SSDEEP
  
  12288:mutrzh9xOXkYZcZxkXAPCfjFahGf+buZkDgLxJiXUbARkNmGozI:mutr5OUYZaaOkFahGfOf8NJNA2MGo8
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2