6b3e85771545eb33cd7e20d55f160710fb02773a8b80896f9194ac4164a8d688 | Triage

Sharing

General

Target

1871ff55ae441349e24e0a002293c9af_JaffaCakes118
Size

14KB
Sample

240329-e5geashg8y
MD5

1871ff55ae441349e24e0a002293c9af
SHA1

aae1ce84257eb16e7e8a40ed69660abb9b97e655
SHA256

6b3e85771545eb33cd7e20d55f160710fb02773a8b80896f9194ac4164a8d688
SHA512

ea1110fbf93224a86dca45cad4f5b5a6b600b9894ab1cd5c11b026f27c6e96c3abf4e21abb6d633eaafb55fe86439a3c9c0bfbc1f6dcb3da1c68b07427bb2308
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYq441/ea:hDXWipuE+K3/SSHgxmq441/ea

Score

7^/10

Malware Config

Targets

- Target
  
  1871ff55ae441349e24e0a002293c9af_JaffaCakes118
- Size
  
  14KB
- MD5
  
  1871ff55ae441349e24e0a002293c9af
- SHA1
  
  aae1ce84257eb16e7e8a40ed69660abb9b97e655
- SHA256
  
  6b3e85771545eb33cd7e20d55f160710fb02773a8b80896f9194ac4164a8d688
- SHA512
  
  ea1110fbf93224a86dca45cad4f5b5a6b600b9894ab1cd5c11b026f27c6e96c3abf4e21abb6d633eaafb55fe86439a3c9c0bfbc1f6dcb3da1c68b07427bb2308
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYq441/ea:hDXWipuE+K3/SSHgxmq441/ea
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2