a14303a75df6913a42c7d31ea28a17bcaf5c4d8ca2a58833832411ac44bf67e6 | Triage

Sharing

General

Target

0fe834cedc441d4c830a217f7d9f9418_JaffaCakes118
Size

20KB
Sample

240328-zvrgqsge4z
MD5

0fe834cedc441d4c830a217f7d9f9418
SHA1

3f7e36f9976ba7c8b00dcd82e8ca3f5e689b570a
SHA256

a14303a75df6913a42c7d31ea28a17bcaf5c4d8ca2a58833832411ac44bf67e6
SHA512

424a1312c45655e0d94258579aabd1726b412ce4fce799eafb60754e28b0910a4082fc47a1e0392c4d6023fe87a863f2e9cb2e80d10ae23e8b6ba7600e7e3bc8
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4phl:hDXWipuE+K3/SSHgxmHZphl

Score

7^/10

Malware Config

Targets

- Target
  
  0fe834cedc441d4c830a217f7d9f9418_JaffaCakes118
- Size
  
  20KB
- MD5
  
  0fe834cedc441d4c830a217f7d9f9418
- SHA1
  
  3f7e36f9976ba7c8b00dcd82e8ca3f5e689b570a
- SHA256
  
  a14303a75df6913a42c7d31ea28a17bcaf5c4d8ca2a58833832411ac44bf67e6
- SHA512
  
  424a1312c45655e0d94258579aabd1726b412ce4fce799eafb60754e28b0910a4082fc47a1e0392c4d6023fe87a863f2e9cb2e80d10ae23e8b6ba7600e7e3bc8
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4phl:hDXWipuE+K3/SSHgxmHZphl
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2