f93aa943669bb931690e94869f41ca9ab640c907338d500eabab97dcec7fadf3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0b0bef4682e9b0507d85451e40d5f3d1_JaffaCakes118
Size

16KB
Sample

240328-vfsn2aca35
MD5

0b0bef4682e9b0507d85451e40d5f3d1
SHA1

acebb8973a56feda74e550186cd5a7fb1b2a439c
SHA256

f93aa943669bb931690e94869f41ca9ab640c907338d500eabab97dcec7fadf3
SHA512

903171a9e60a2a407f5eaf6004ee9aeddd85e37c61ae3f1d1ea87a4f32aa869cfafae7667e66709b5dd6d3fb5f94c1cd94bcf66113349f5670dfbaa536423168
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhucW:hDXWipuE+K3/SSHgxIcW

Score

7^/10

Malware Config

Targets

- Target
  
  0b0bef4682e9b0507d85451e40d5f3d1_JaffaCakes118
- Size
  
  16KB
- MD5
  
  0b0bef4682e9b0507d85451e40d5f3d1
- SHA1
  
  acebb8973a56feda74e550186cd5a7fb1b2a439c
- SHA256
  
  f93aa943669bb931690e94869f41ca9ab640c907338d500eabab97dcec7fadf3
- SHA512
  
  903171a9e60a2a407f5eaf6004ee9aeddd85e37c61ae3f1d1ea87a4f32aa869cfafae7667e66709b5dd6d3fb5f94c1cd94bcf66113349f5670dfbaa536423168
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhucW:hDXWipuE+K3/SSHgxIcW
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2