b4493dea51920a60585845ba22e1998780b245cbbef97cca2cec38812be8aa9d | Triage

Sharing

General

Target

11533a05a55e48f1751cd1ed0483383a_JaffaCakes118
Size

14KB
Sample

240328-11jvhsae52
MD5

11533a05a55e48f1751cd1ed0483383a
SHA1

5cf90e63eb8f05147cf3aa6540b20e447b21c969
SHA256

b4493dea51920a60585845ba22e1998780b245cbbef97cca2cec38812be8aa9d
SHA512

236ab522c59d74ff724254ff7b0b58e32693d81fbd1fb0f7caceee5d0fec175f8eec388f8bbcefc207e39fcf38a4d9eb550ce223fe704019e7e22d0035c77a9a
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhRMC:hDXWipuE+K3/SSHgx1

Score

7^/10

Malware Config

Targets

- Target
  
  11533a05a55e48f1751cd1ed0483383a_JaffaCakes118
- Size
  
  14KB
- MD5
  
  11533a05a55e48f1751cd1ed0483383a
- SHA1
  
  5cf90e63eb8f05147cf3aa6540b20e447b21c969
- SHA256
  
  b4493dea51920a60585845ba22e1998780b245cbbef97cca2cec38812be8aa9d
- SHA512
  
  236ab522c59d74ff724254ff7b0b58e32693d81fbd1fb0f7caceee5d0fec175f8eec388f8bbcefc207e39fcf38a4d9eb550ce223fe704019e7e22d0035c77a9a
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhRMC:hDXWipuE+K3/SSHgx1
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2