9e610c7984a4f6b33f8cdf5a750416dcfccd6465a8fafb4402d2697834cb191d | Triage

Sharing

General

Target

0d6ff9174f3c184d8eff282262df94ef_JaffaCakes118
Size

16KB
Sample

240328-xk2hvaee56
MD5

0d6ff9174f3c184d8eff282262df94ef
SHA1

f614db1fca3b47f6c88b7246b4e2f1f7ec310615
SHA256

9e610c7984a4f6b33f8cdf5a750416dcfccd6465a8fafb4402d2697834cb191d
SHA512

0b101a054f2fb30adadc02df07c7c5c53b33a132fbec5e53138dd1db3f7ccde6058fb0919519d6f7081922a185e8c2c09329e62599f59cc22a00dd7ff2df59ef
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZV:hDXWipuE+K3/SSHgx3V

Score

7^/10

Malware Config

Targets

- Target
  
  0d6ff9174f3c184d8eff282262df94ef_JaffaCakes118
- Size
  
  16KB
- MD5
  
  0d6ff9174f3c184d8eff282262df94ef
- SHA1
  
  f614db1fca3b47f6c88b7246b4e2f1f7ec310615
- SHA256
  
  9e610c7984a4f6b33f8cdf5a750416dcfccd6465a8fafb4402d2697834cb191d
- SHA512
  
  0b101a054f2fb30adadc02df07c7c5c53b33a132fbec5e53138dd1db3f7ccde6058fb0919519d6f7081922a185e8c2c09329e62599f59cc22a00dd7ff2df59ef
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZV:hDXWipuE+K3/SSHgx3V
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2