0410c1f3c1d11aa3330061993bd0636236ec2761f251a4bfd6e1974355297ca4 | Triage

Sharing

General

Target

09a7b263de86d01b7955955e0ef0c545_JaffaCakes118
Size

98KB
Sample

240328-s9ps5aaa7t
MD5

09a7b263de86d01b7955955e0ef0c545
SHA1

a0663bdbc5d5ed854faa2a57f300d0b94789e5d0
SHA256

0410c1f3c1d11aa3330061993bd0636236ec2761f251a4bfd6e1974355297ca4
SHA512

eb51a60006a5b028d420f274c65fb8c6d85918a985a3ef2160902804c891f3918baf7ea9909675b0cd213c08339d710fbc0f2992a1185d6e9dbb6c66f7b58fe8
SSDEEP

1536:ZGaq93mQy5PV4MSu4M3vfAlA89mWMMF4pzYU2qIUZ6kd+l9:Z5MaVVnLA0WLM0Uvh6kd+l9

Score

7^/10

Malware Config

Targets

- Target
  
  09a7b263de86d01b7955955e0ef0c545_JaffaCakes118
- Size
  
  98KB
- MD5
  
  09a7b263de86d01b7955955e0ef0c545
- SHA1
  
  a0663bdbc5d5ed854faa2a57f300d0b94789e5d0
- SHA256
  
  0410c1f3c1d11aa3330061993bd0636236ec2761f251a4bfd6e1974355297ca4
- SHA512
  
  eb51a60006a5b028d420f274c65fb8c6d85918a985a3ef2160902804c891f3918baf7ea9909675b0cd213c08339d710fbc0f2992a1185d6e9dbb6c66f7b58fe8
- SSDEEP
  
  1536:ZGaq93mQy5PV4MSu4M3vfAlA89mWMMF4pzYU2qIUZ6kd+l9:Z5MaVVnLA0WLM0Uvh6kd+l9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2