4ffe8306d45f80bc0f46bf4b3692875186253b3dd2eaa048d600a9efb8ecc3b1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13743212590bf633b419e5ce923e683a_JaffaCakes118
Size

16KB
Sample

240329-afx9asch65
MD5

13743212590bf633b419e5ce923e683a
SHA1

5c5876bd88bd7d30f699923b58645d71a78a836c
SHA256

4ffe8306d45f80bc0f46bf4b3692875186253b3dd2eaa048d600a9efb8ecc3b1
SHA512

70aa93e8fa20509e79acea703dcd271456e4f0c5e8a2de9854c69a9e70688926ac1001fb78e8db6c0b24e3da7aeda69480356708edf3b29af82f11f4b70b39f8
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYvC:hDXWipuE+K3/SSHgxma

Score

7^/10

Malware Config

Targets

- Target
  
  13743212590bf633b419e5ce923e683a_JaffaCakes118
- Size
  
  16KB
- MD5
  
  13743212590bf633b419e5ce923e683a
- SHA1
  
  5c5876bd88bd7d30f699923b58645d71a78a836c
- SHA256
  
  4ffe8306d45f80bc0f46bf4b3692875186253b3dd2eaa048d600a9efb8ecc3b1
- SHA512
  
  70aa93e8fa20509e79acea703dcd271456e4f0c5e8a2de9854c69a9e70688926ac1001fb78e8db6c0b24e3da7aeda69480356708edf3b29af82f11f4b70b39f8
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYvC:hDXWipuE+K3/SSHgxma
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2