0ea0c627c0972c2aea28dbd8bc1b3e222e686a09142c746d331a7795c138cab6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

07d1c7e7752c9952d3fb26580edf9001_JaffaCakes118
Size

14KB
Sample

240328-rp6epsgc8x
MD5

07d1c7e7752c9952d3fb26580edf9001
SHA1

c1487ea35523ba848deb18b5ba2bdf666b1707ad
SHA256

0ea0c627c0972c2aea28dbd8bc1b3e222e686a09142c746d331a7795c138cab6
SHA512

e25875a74486c5560ff5e246f42997248f0692b7335a29dd88f669ef63c6b65b2ac027298798af1124064fc47e773e5135f94b8d09f02bdd6327aed32a01ff00
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4YZUS:hDXWipuE+K3/SSHgxmX

Score

7^/10

Malware Config

Targets

- Target
  
  07d1c7e7752c9952d3fb26580edf9001_JaffaCakes118
- Size
  
  14KB
- MD5
  
  07d1c7e7752c9952d3fb26580edf9001
- SHA1
  
  c1487ea35523ba848deb18b5ba2bdf666b1707ad
- SHA256
  
  0ea0c627c0972c2aea28dbd8bc1b3e222e686a09142c746d331a7795c138cab6
- SHA512
  
  e25875a74486c5560ff5e246f42997248f0692b7335a29dd88f669ef63c6b65b2ac027298798af1124064fc47e773e5135f94b8d09f02bdd6327aed32a01ff00
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4YZUS:hDXWipuE+K3/SSHgxmX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2