ee5eec198234968bd985e30330ad089a888dc2ace5d5e6c2f37e60113064846f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

065679f632c2d1712b084ff4390278fd_JaffaCakes118
Size

20KB
Sample

240328-qdrlqsga44
MD5

065679f632c2d1712b084ff4390278fd
SHA1

e147e40d2a0122b21fa4ea207c19d3fe17afa1b0
SHA256

ee5eec198234968bd985e30330ad089a888dc2ace5d5e6c2f37e60113064846f
SHA512

8afb3637a5b460b4f350ec73c8cdfc9cbbb904433646f8be7e5c252febb1dd4dd173caf59f2107be38c6e5859a383d6764b0fa1fe106beb16fce0fc8f89e7f92
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4v:hDXWipuE+K3/SSHgxmHZv

Score

7^/10

Malware Config

Targets

- Target
  
  065679f632c2d1712b084ff4390278fd_JaffaCakes118
- Size
  
  20KB
- MD5
  
  065679f632c2d1712b084ff4390278fd
- SHA1
  
  e147e40d2a0122b21fa4ea207c19d3fe17afa1b0
- SHA256
  
  ee5eec198234968bd985e30330ad089a888dc2ace5d5e6c2f37e60113064846f
- SHA512
  
  8afb3637a5b460b4f350ec73c8cdfc9cbbb904433646f8be7e5c252febb1dd4dd173caf59f2107be38c6e5859a383d6764b0fa1fe106beb16fce0fc8f89e7f92
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4v:hDXWipuE+K3/SSHgxmHZv
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2