a3e2813e93903931d0e1bf90353086ba64c5b00ae0b2d32bed7f8061f9104681 | Triage

Sharing

General

Target

08cb383f22ef6187f4cca322c159d636_JaffaCakes118
Size

16KB
Sample

240328-sg9ylahc2x
MD5

08cb383f22ef6187f4cca322c159d636
SHA1

64201b639ce59a706011a330390f6610e22733a0
SHA256

a3e2813e93903931d0e1bf90353086ba64c5b00ae0b2d32bed7f8061f9104681
SHA512

dfb31a0fcb81d8c1fc4926f7d986516fa22d4dc1b9e477b1edc726d8d839748cea46543017f38af4d2f2afe0453530f785e76f3a8beedd514ea95a588103a4a0
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4:hDXWipuE+K3/SSHgxm

Score

7^/10

Malware Config

Targets

- Target
  
  08cb383f22ef6187f4cca322c159d636_JaffaCakes118
- Size
  
  16KB
- MD5
  
  08cb383f22ef6187f4cca322c159d636
- SHA1
  
  64201b639ce59a706011a330390f6610e22733a0
- SHA256
  
  a3e2813e93903931d0e1bf90353086ba64c5b00ae0b2d32bed7f8061f9104681
- SHA512
  
  dfb31a0fcb81d8c1fc4926f7d986516fa22d4dc1b9e477b1edc726d8d839748cea46543017f38af4d2f2afe0453530f785e76f3a8beedd514ea95a588103a4a0
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4:hDXWipuE+K3/SSHgxm
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2