7af6595ef53007e9468b13e717e21d1e906ee8ec61bf0cc57e06d74ad492fb96 | Triage

Sharing

General

Target

0d59cdac6efe4042bba9243e6a5e4e19_JaffaCakes118
Size

15KB
Sample

240328-xhmlxade3t
MD5

0d59cdac6efe4042bba9243e6a5e4e19
SHA1

a523a703649a0567b14f7b7e861f143158e785be
SHA256

7af6595ef53007e9468b13e717e21d1e906ee8ec61bf0cc57e06d74ad492fb96
SHA512

1d684731752e32feb1c73199c18dfa52db38cc467b21a9fe6e665d35f961f52623d35f01e27b0088c8faf14ac0d288d5cc27e0d601e8ef43457123e1be77bf7a
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY8QaK:hDXWipuE+K3/SSHgxm83K

Score

7^/10

Malware Config

Targets

- Target
  
  0d59cdac6efe4042bba9243e6a5e4e19_JaffaCakes118
- Size
  
  15KB
- MD5
  
  0d59cdac6efe4042bba9243e6a5e4e19
- SHA1
  
  a523a703649a0567b14f7b7e861f143158e785be
- SHA256
  
  7af6595ef53007e9468b13e717e21d1e906ee8ec61bf0cc57e06d74ad492fb96
- SHA512
  
  1d684731752e32feb1c73199c18dfa52db38cc467b21a9fe6e665d35f961f52623d35f01e27b0088c8faf14ac0d288d5cc27e0d601e8ef43457123e1be77bf7a
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY8QaK:hDXWipuE+K3/SSHgxm83K
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2