4518b0fbd154e48997f7893d76ac91556ec762268095863348235333801e7264 | Triage

Sharing

General

Target

156859d274545c043c3e7a8e201d9c99_JaffaCakes118
Size

16KB
Sample

240329-b5bbhaeb9s
MD5

156859d274545c043c3e7a8e201d9c99
SHA1

c5c66160478520b06eac1071ae2ce4852dc34075
SHA256

4518b0fbd154e48997f7893d76ac91556ec762268095863348235333801e7264
SHA512

58f404b0e630b34fe53ae022a7c369c2674777a3d840fb0ef52bcba71911a026dea9215374f5916cb49775cdbfbe40928b947521ba7ff542c058862ee0472689
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlh:hDXWipuE+K3/SSHgxmlh

Score

7^/10

Malware Config

Targets

- Target
  
  156859d274545c043c3e7a8e201d9c99_JaffaCakes118
- Size
  
  16KB
- MD5
  
  156859d274545c043c3e7a8e201d9c99
- SHA1
  
  c5c66160478520b06eac1071ae2ce4852dc34075
- SHA256
  
  4518b0fbd154e48997f7893d76ac91556ec762268095863348235333801e7264
- SHA512
  
  58f404b0e630b34fe53ae022a7c369c2674777a3d840fb0ef52bcba71911a026dea9215374f5916cb49775cdbfbe40928b947521ba7ff542c058862ee0472689
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlh:hDXWipuE+K3/SSHgxmlh
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2