92f3a51ed46a4f638f342778aa7d3435f530ba9b32730ab7f312b088747f64a6 | Triage

Sharing

General

Target

0d06e4b8f305ff629b596a78750dce92_JaffaCakes118
Size

14KB
Sample

240328-w81qsadb6w
MD5

0d06e4b8f305ff629b596a78750dce92
SHA1

c8b4825e1f1de1619a7838d0c4b7351802df6f54
SHA256

92f3a51ed46a4f638f342778aa7d3435f530ba9b32730ab7f312b088747f64a6
SHA512

45f0b8ae51cf6b5dd0975f7754da3dd148568adfb5624f4fa27d7ce842eac0f8a6a513b3a92972eab3daea0240efea877ceea44bf4a2b73329d39f922a13789a
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhH:hDXWipuE+K3/SSHgxt

Score

7^/10

Malware Config

Targets

- Target
  
  0d06e4b8f305ff629b596a78750dce92_JaffaCakes118
- Size
  
  14KB
- MD5
  
  0d06e4b8f305ff629b596a78750dce92
- SHA1
  
  c8b4825e1f1de1619a7838d0c4b7351802df6f54
- SHA256
  
  92f3a51ed46a4f638f342778aa7d3435f530ba9b32730ab7f312b088747f64a6
- SHA512
  
  45f0b8ae51cf6b5dd0975f7754da3dd148568adfb5624f4fa27d7ce842eac0f8a6a513b3a92972eab3daea0240efea877ceea44bf4a2b73329d39f922a13789a
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhH:hDXWipuE+K3/SSHgxt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2