4529a745936016388719293e9aa98a306138de2576264a0b375cae9ddd813058 | Triage

Sharing

General

Target

0be730c9c8807aa445fe67730bb2eab5_JaffaCakes118
Size

20KB
Sample

240328-v7hyxacg98
MD5

0be730c9c8807aa445fe67730bb2eab5
SHA1

253c0c4018abe8d51fbcab6cd6c4b44ffdd882fc
SHA256

4529a745936016388719293e9aa98a306138de2576264a0b375cae9ddd813058
SHA512

e9b94cfd55dafe2aece32d1db84884b39683e6fafbc9256e3e22cbf14df85e3675ab1ec0770cc4d7fcabf032b8c9c03992f750c3d1f860c0c8e08c652433fdda
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4sH:hDXWipuE+K3/SSHgxmHZsH

Score

7^/10

Malware Config

Targets

- Target
  
  0be730c9c8807aa445fe67730bb2eab5_JaffaCakes118
- Size
  
  20KB
- MD5
  
  0be730c9c8807aa445fe67730bb2eab5
- SHA1
  
  253c0c4018abe8d51fbcab6cd6c4b44ffdd882fc
- SHA256
  
  4529a745936016388719293e9aa98a306138de2576264a0b375cae9ddd813058
- SHA512
  
  e9b94cfd55dafe2aece32d1db84884b39683e6fafbc9256e3e22cbf14df85e3675ab1ec0770cc4d7fcabf032b8c9c03992f750c3d1f860c0c8e08c652433fdda
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4sH:hDXWipuE+K3/SSHgxmHZsH
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2