afe9707fb32d9fb02acee7f892f72b94c8ddc5bbf3cb94acc7cc22f75218f197 | Triage

Sharing

General

Target

14a0acbd40cab4417c6a15ab2a52dea6_JaffaCakes118
Size

99KB
Sample

240329-bft3baea57
MD5

14a0acbd40cab4417c6a15ab2a52dea6
SHA1

f21602d3e714deec95d02d1042ce0d8eba5fceb5
SHA256

afe9707fb32d9fb02acee7f892f72b94c8ddc5bbf3cb94acc7cc22f75218f197
SHA512

f55063198a14dab1db4881161d69842170f00d8e1acbcb2e4dc77d252132bbb9598125d39b07f0b2bd9c281e809a64934929bc6cf039748de650b04526e3b007
SSDEEP

1536:ZGaq93mQy5PV4MSu4M3vfAlA89mWMMF4pzYU2qIUZ6kd+lk:Z5MaVVnLA0WLM0Uvh6kd+lk

Score

7^/10

Malware Config

Targets

- Target
  
  14a0acbd40cab4417c6a15ab2a52dea6_JaffaCakes118
- Size
  
  99KB
- MD5
  
  14a0acbd40cab4417c6a15ab2a52dea6
- SHA1
  
  f21602d3e714deec95d02d1042ce0d8eba5fceb5
- SHA256
  
  afe9707fb32d9fb02acee7f892f72b94c8ddc5bbf3cb94acc7cc22f75218f197
- SHA512
  
  f55063198a14dab1db4881161d69842170f00d8e1acbcb2e4dc77d252132bbb9598125d39b07f0b2bd9c281e809a64934929bc6cf039748de650b04526e3b007
- SSDEEP
  
  1536:ZGaq93mQy5PV4MSu4M3vfAlA89mWMMF4pzYU2qIUZ6kd+lk:Z5MaVVnLA0WLM0Uvh6kd+lk
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2