de6181185003749b5e56e9b3bb855b2b121829e2ab998c41c0b06e610502363e | Triage

Sharing

General

Target

10729b651c3838868f515dc723475d29_JaffaCakes118
Size

15KB
Sample

240328-1a1qcaha3w
MD5

10729b651c3838868f515dc723475d29
SHA1

b3d8855a1b9a951d6592f642e311f37c007f8dd0
SHA256

de6181185003749b5e56e9b3bb855b2b121829e2ab998c41c0b06e610502363e
SHA512

d03221ad55a52d5eab56d5a8f8052822f0a5a551cfe8690dd3b08d8bf85036874dda3292a132aeebe1df49017ba0a157fd71998dacb99da82460bab026e416f5
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYyhg:hDXWipuE+K3/SSHgxmyhg

Score

7^/10

Malware Config

Targets

- Target
  
  10729b651c3838868f515dc723475d29_JaffaCakes118
- Size
  
  15KB
- MD5
  
  10729b651c3838868f515dc723475d29
- SHA1
  
  b3d8855a1b9a951d6592f642e311f37c007f8dd0
- SHA256
  
  de6181185003749b5e56e9b3bb855b2b121829e2ab998c41c0b06e610502363e
- SHA512
  
  d03221ad55a52d5eab56d5a8f8052822f0a5a551cfe8690dd3b08d8bf85036874dda3292a132aeebe1df49017ba0a157fd71998dacb99da82460bab026e416f5
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYyhg:hDXWipuE+K3/SSHgxmyhg
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2