5340fa00d94dad020cd738c7953f2993ee2409bb1a3a9d31f1393e358eb285b3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

016eca0dcdd25213cf26abb261fca666_JaffaCakes118
Size

16KB
Sample

240328-khbheseb55
MD5

016eca0dcdd25213cf26abb261fca666
SHA1

a3742fc23c3d072f77f93cd22827de5d1fd357d1
SHA256

5340fa00d94dad020cd738c7953f2993ee2409bb1a3a9d31f1393e358eb285b3
SHA512

9575e604658b8be5e64a28f25c5b9cad5f1800c848cb0be964e4a3e529110a37734e8494e558c89213921a48eab77b3a6a22f9453b5a705ada5e6b6f185a2a93
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYl0:hDXWipuE+K3/SSHgxml0

Score

7^/10

Malware Config

Targets

- Target
  
  016eca0dcdd25213cf26abb261fca666_JaffaCakes118
- Size
  
  16KB
- MD5
  
  016eca0dcdd25213cf26abb261fca666
- SHA1
  
  a3742fc23c3d072f77f93cd22827de5d1fd357d1
- SHA256
  
  5340fa00d94dad020cd738c7953f2993ee2409bb1a3a9d31f1393e358eb285b3
- SHA512
  
  9575e604658b8be5e64a28f25c5b9cad5f1800c848cb0be964e4a3e529110a37734e8494e558c89213921a48eab77b3a6a22f9453b5a705ada5e6b6f185a2a93
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYl0:hDXWipuE+K3/SSHgxml0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2