4344c1539bb90ce314247cfbf54060b76c1f3954821f13d72edafd66a53d8056 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0626df0bd09632d66d385758c7a3a042_JaffaCakes118
Size

14KB
Sample

240328-p8dspaeg3x
MD5

0626df0bd09632d66d385758c7a3a042
SHA1

07b0b59a705b967603694334eb97e7d584434e53
SHA256

4344c1539bb90ce314247cfbf54060b76c1f3954821f13d72edafd66a53d8056
SHA512

033cab1818839ff5484d1fd86fac2d6d0e5e57eb2581e8b5a09a2d513446093aca0071269bb3732372bc03f18581e1f063c0fee1f84b131799f0d696b6222693
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJ:hDXWipuE+K3/SSHgxf

Score

7^/10

Malware Config

Targets

- Target
  
  0626df0bd09632d66d385758c7a3a042_JaffaCakes118
- Size
  
  14KB
- MD5
  
  0626df0bd09632d66d385758c7a3a042
- SHA1
  
  07b0b59a705b967603694334eb97e7d584434e53
- SHA256
  
  4344c1539bb90ce314247cfbf54060b76c1f3954821f13d72edafd66a53d8056
- SHA512
  
  033cab1818839ff5484d1fd86fac2d6d0e5e57eb2581e8b5a09a2d513446093aca0071269bb3732372bc03f18581e1f063c0fee1f84b131799f0d696b6222693
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJ:hDXWipuE+K3/SSHgxf
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2