f6239b94e762b18562eba6eef4ef5eafc10e59b55855b89f705612d07d453245 | Triage

Sharing

General

Target

019a12aa79e40933f9d2df21eea4b71b_JaffaCakes118
Size

48KB
Sample

240328-kqlclagf9w
MD5

019a12aa79e40933f9d2df21eea4b71b
SHA1

0cd313af612359eda381c1ddfb6d4520f37ee71d
SHA256

f6239b94e762b18562eba6eef4ef5eafc10e59b55855b89f705612d07d453245
SHA512

a07540b1d395ed33d8be0e8e2bcca05b1b5a88a24e758fa750b7c440976200ffc23f6443d129ce551e811ffa2dbc984135c719b9adda618b7239dde570bb4cbd
SSDEEP

768:HT1g40wSXvdMx+v3fUFqFRFo6kF7xNvCMUM33ScGyTjUOXRyrny:Hxg2SfdMw3KeE52ayEjd

Score

7^/10

Malware Config

Targets

- Target
  
  019a12aa79e40933f9d2df21eea4b71b_JaffaCakes118
- Size
  
  48KB
- MD5
  
  019a12aa79e40933f9d2df21eea4b71b
- SHA1
  
  0cd313af612359eda381c1ddfb6d4520f37ee71d
- SHA256
  
  f6239b94e762b18562eba6eef4ef5eafc10e59b55855b89f705612d07d453245
- SHA512
  
  a07540b1d395ed33d8be0e8e2bcca05b1b5a88a24e758fa750b7c440976200ffc23f6443d129ce551e811ffa2dbc984135c719b9adda618b7239dde570bb4cbd
- SSDEEP
  
  768:HT1g40wSXvdMx+v3fUFqFRFo6kF7xNvCMUM33ScGyTjUOXRyrny:Hxg2SfdMw3KeE52ayEjd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2