80aba35a43731808bc0bcc6e1bec59a1d121d8cbc8854d596de2e011fa6d0be1 | Triage

Sharing

General

Target

0b6058a9e879471cf0b1da5446e1d424_JaffaCakes118
Size

20KB
Sample

240328-vqxqqscc66
MD5

0b6058a9e879471cf0b1da5446e1d424
SHA1

353aedc6792598029bf9ebd15e3387d1d6d66af8
SHA256

80aba35a43731808bc0bcc6e1bec59a1d121d8cbc8854d596de2e011fa6d0be1
SHA512

cf5c154d1402877d3691bb69cabc4f79d601d546f8ddb0ed8c445bf9eef1ad096368b290673b36b28e3f2e719c3626d35284ff67b1440ae1818ec25c5ea09281
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L41q8:hDXWipuE+K3/SSHgxmHZ1x

Score

7^/10

Malware Config

Targets

- Target
  
  0b6058a9e879471cf0b1da5446e1d424_JaffaCakes118
- Size
  
  20KB
- MD5
  
  0b6058a9e879471cf0b1da5446e1d424
- SHA1
  
  353aedc6792598029bf9ebd15e3387d1d6d66af8
- SHA256
  
  80aba35a43731808bc0bcc6e1bec59a1d121d8cbc8854d596de2e011fa6d0be1
- SHA512
  
  cf5c154d1402877d3691bb69cabc4f79d601d546f8ddb0ed8c445bf9eef1ad096368b290673b36b28e3f2e719c3626d35284ff67b1440ae1818ec25c5ea09281
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L41q8:hDXWipuE+K3/SSHgxmHZ1x
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2