388926bb3ba49374887f0b4a5da53e240180e8bc521f745effa52bf0fe82954f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

06487a7b20b17ddc15d01dd7ee831224_JaffaCakes118
Size

20KB
Sample

240328-qb69eaeh2w
MD5

06487a7b20b17ddc15d01dd7ee831224
SHA1

6b4db9f38c7c249a0c0eaf4c6c176145917a205d
SHA256

388926bb3ba49374887f0b4a5da53e240180e8bc521f745effa52bf0fe82954f
SHA512

8519c5949611675406a9cd8a71b2a08f2d2c04c58e67ef97d0badbaa31238d9ff1ac1b8df2772538d9aca27ce44e62e6cb6af4db200127412dedfa6014724c02
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4S7:hDXWipuE+K3/SSHgxmHZ4

Score

7^/10

Malware Config

Targets

- Target
  
  06487a7b20b17ddc15d01dd7ee831224_JaffaCakes118
- Size
  
  20KB
- MD5
  
  06487a7b20b17ddc15d01dd7ee831224
- SHA1
  
  6b4db9f38c7c249a0c0eaf4c6c176145917a205d
- SHA256
  
  388926bb3ba49374887f0b4a5da53e240180e8bc521f745effa52bf0fe82954f
- SHA512
  
  8519c5949611675406a9cd8a71b2a08f2d2c04c58e67ef97d0badbaa31238d9ff1ac1b8df2772538d9aca27ce44e62e6cb6af4db200127412dedfa6014724c02
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4S7:hDXWipuE+K3/SSHgxmHZ4
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2