9a28d95bc970414a9aa8dc1b843d14704225b18a8ae12e574e3bf10260889ed7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19a71c033c0c3359e3c4c4202b7a4a13_JaffaCakes118
Size

14KB
Sample

240329-f5g69saf91
MD5

19a71c033c0c3359e3c4c4202b7a4a13
SHA1

ecb32da7726adcfd0e8b20624fde3e927183af98
SHA256

9a28d95bc970414a9aa8dc1b843d14704225b18a8ae12e574e3bf10260889ed7
SHA512

3c29d2c235945b39c1ecb675c7ba68b583bf83970784488d8397a773ff5c28fa7baf405242f4b52b78c0ccbe53273457d245e8701ed2d708cf80e4373c31578e
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yho:hDXWipuE+K3/SSHgxi

Score

7^/10

Malware Config

Targets

- Target
  
  19a71c033c0c3359e3c4c4202b7a4a13_JaffaCakes118
- Size
  
  14KB
- MD5
  
  19a71c033c0c3359e3c4c4202b7a4a13
- SHA1
  
  ecb32da7726adcfd0e8b20624fde3e927183af98
- SHA256
  
  9a28d95bc970414a9aa8dc1b843d14704225b18a8ae12e574e3bf10260889ed7
- SHA512
  
  3c29d2c235945b39c1ecb675c7ba68b583bf83970784488d8397a773ff5c28fa7baf405242f4b52b78c0ccbe53273457d245e8701ed2d708cf80e4373c31578e
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yho:hDXWipuE+K3/SSHgxi
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2