ee66bed3f91e3c44d53ff8f25acf6c4b3b7035b14fb66544624e62cc997fadc4 | Triage

Sharing

General

Target

0b6b226a6a0670501eee05d0ec8ec82f_JaffaCakes118
Size

16KB
Sample

240328-vr2q3scc96
MD5

0b6b226a6a0670501eee05d0ec8ec82f
SHA1

7af2cbb1ba2933e09c6a70cd59001d9f8a968ce8
SHA256

ee66bed3f91e3c44d53ff8f25acf6c4b3b7035b14fb66544624e62cc997fadc4
SHA512

a5b800b4e95a3f8bdc74ca28ea1757d9220032798d931be7869bfef3aea80100bb7682ea3abd76a3740cd834db9d4f1b13eaf94c00435e1a6722f755c388f3da
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlgJ:hDXWipuE+K3/SSHgxmlgJ

Score

7^/10

Malware Config

Targets

- Target
  
  0b6b226a6a0670501eee05d0ec8ec82f_JaffaCakes118
- Size
  
  16KB
- MD5
  
  0b6b226a6a0670501eee05d0ec8ec82f
- SHA1
  
  7af2cbb1ba2933e09c6a70cd59001d9f8a968ce8
- SHA256
  
  ee66bed3f91e3c44d53ff8f25acf6c4b3b7035b14fb66544624e62cc997fadc4
- SHA512
  
  a5b800b4e95a3f8bdc74ca28ea1757d9220032798d931be7869bfef3aea80100bb7682ea3abd76a3740cd834db9d4f1b13eaf94c00435e1a6722f755c388f3da
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlgJ:hDXWipuE+K3/SSHgxmlgJ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2