7afefc4ec90c0a7e2206fc93162726c2b89bca7f6a1978da8114638a002a1148 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19830f0bc8237f7a29c569a99c8b4f1c_JaffaCakes118
Size

16KB
Sample

240329-f2v9qaaf4z
MD5

19830f0bc8237f7a29c569a99c8b4f1c
SHA1

344e4a66ad7e9c5aa180551c0db512485ad0e146
SHA256

7afefc4ec90c0a7e2206fc93162726c2b89bca7f6a1978da8114638a002a1148
SHA512

ced685c022154b31518c70763558d4662a4ee6bae42d8285073466436fec54448d04cb330de8c0e987bca1e48ec3da34450dc845c4b8d66a05ab65fb1326ca01
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhR0K:hDXWipuE+K3/SSHgx4K

Score

7^/10

Malware Config

Targets

- Target
  
  19830f0bc8237f7a29c569a99c8b4f1c_JaffaCakes118
- Size
  
  16KB
- MD5
  
  19830f0bc8237f7a29c569a99c8b4f1c
- SHA1
  
  344e4a66ad7e9c5aa180551c0db512485ad0e146
- SHA256
  
  7afefc4ec90c0a7e2206fc93162726c2b89bca7f6a1978da8114638a002a1148
- SHA512
  
  ced685c022154b31518c70763558d4662a4ee6bae42d8285073466436fec54448d04cb330de8c0e987bca1e48ec3da34450dc845c4b8d66a05ab65fb1326ca01
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhR0K:hDXWipuE+K3/SSHgx4K
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2