a8054060ea7a103dc8d2943aea79c5cfed3645c23c1027fcfd042e6d14daf847 | Triage

Sharing

General

Target

06d39b248619f7fda87fc5847d7a6ef2_JaffaCakes118
Size

15KB
Sample

240328-qtks5agd76
MD5

06d39b248619f7fda87fc5847d7a6ef2
SHA1

9b80ecd44a4c26020bd38bc75358ff9d684e1477
SHA256

a8054060ea7a103dc8d2943aea79c5cfed3645c23c1027fcfd042e6d14daf847
SHA512

b8d11cd602a5ef4bfd7419950666e5c80f3023070554b4825e41d8e37a258f4ec5811942a0d28c5315eb49633da66cab30c90fc6c292fa211a1932cfaff7a8a2
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYvAz2d:hDXWipuE+K3/SSHgxm4U

Score

7^/10

Malware Config

Targets

- Target
  
  06d39b248619f7fda87fc5847d7a6ef2_JaffaCakes118
- Size
  
  15KB
- MD5
  
  06d39b248619f7fda87fc5847d7a6ef2
- SHA1
  
  9b80ecd44a4c26020bd38bc75358ff9d684e1477
- SHA256
  
  a8054060ea7a103dc8d2943aea79c5cfed3645c23c1027fcfd042e6d14daf847
- SHA512
  
  b8d11cd602a5ef4bfd7419950666e5c80f3023070554b4825e41d8e37a258f4ec5811942a0d28c5315eb49633da66cab30c90fc6c292fa211a1932cfaff7a8a2
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYvAz2d:hDXWipuE+K3/SSHgxm4U
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2