5ec42f7e2b6a365353ccd44173b5271dd4462061f298a5815d654f4ce5e04662 | Triage

Sharing

General

Target

18021e7956320c608b1a571e3684e849_JaffaCakes118
Size

15KB
Sample

240329-epwjaahd5z
MD5

18021e7956320c608b1a571e3684e849
SHA1

c04a9aecd3d6866cecec10d75b0cbe10acc08b9b
SHA256

5ec42f7e2b6a365353ccd44173b5271dd4462061f298a5815d654f4ce5e04662
SHA512

d0a90fce84808341c276e88d5899b9f83249c765057b0110f835a6d7205a27b8d4f50f07a6e4068a18ebdccc2d03691a12142e4b5b4df8a538dddd42520c6293
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY8nDs:hDXWipuE+K3/SSHgxm8Ds

Score

7^/10

Malware Config

Targets

- Target
  
  18021e7956320c608b1a571e3684e849_JaffaCakes118
- Size
  
  15KB
- MD5
  
  18021e7956320c608b1a571e3684e849
- SHA1
  
  c04a9aecd3d6866cecec10d75b0cbe10acc08b9b
- SHA256
  
  5ec42f7e2b6a365353ccd44173b5271dd4462061f298a5815d654f4ce5e04662
- SHA512
  
  d0a90fce84808341c276e88d5899b9f83249c765057b0110f835a6d7205a27b8d4f50f07a6e4068a18ebdccc2d03691a12142e4b5b4df8a538dddd42520c6293
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY8nDs:hDXWipuE+K3/SSHgxm8Ds
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2