e15fe97fe55e1da5c472cab396e6feee25db3bfe0f8e6b5e05231b4e4bd89623 | Triage

Sharing

General

Target

0bd772410b6d9f28a056502d6ae7f2b2_JaffaCakes118
Size

16KB
Sample

240328-v5mjbabh6w
MD5

0bd772410b6d9f28a056502d6ae7f2b2
SHA1

fac20b34445b134d19e444bdb575b49b94fe1b33
SHA256

e15fe97fe55e1da5c472cab396e6feee25db3bfe0f8e6b5e05231b4e4bd89623
SHA512

4cbd1e6df841782905af998407b5a09359a68d19eaae0c3c6044b45a3ca0164eb45a5f7f1b5755b3f34df2136a136d7d7e1f73170682683e0414e1f1bed27557
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhayP25:hDXWipuE+K3/SSHgxZq

Score

7^/10

Malware Config

Targets

- Target
  
  0bd772410b6d9f28a056502d6ae7f2b2_JaffaCakes118
- Size
  
  16KB
- MD5
  
  0bd772410b6d9f28a056502d6ae7f2b2
- SHA1
  
  fac20b34445b134d19e444bdb575b49b94fe1b33
- SHA256
  
  e15fe97fe55e1da5c472cab396e6feee25db3bfe0f8e6b5e05231b4e4bd89623
- SHA512
  
  4cbd1e6df841782905af998407b5a09359a68d19eaae0c3c6044b45a3ca0164eb45a5f7f1b5755b3f34df2136a136d7d7e1f73170682683e0414e1f1bed27557
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhayP25:hDXWipuE+K3/SSHgxZq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2