dabdc10d4cb05ca35950fd529b3a08dfe9e19621e12437795268b8615202377c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19ca53e94f4c60813da5ccf75eb14f33_JaffaCakes118
Size

15KB
Sample

240329-f83x5sbe76
MD5

19ca53e94f4c60813da5ccf75eb14f33
SHA1

c3007a4f24814409eb60f32dafc4ccb1aef77d03
SHA256

dabdc10d4cb05ca35950fd529b3a08dfe9e19621e12437795268b8615202377c
SHA512

2c6fb4615cc09db3ce18002384ef2757f09e9ad2d50e3d33ebd8a53e51607d6da8a1ccdb6908b5fdeb14620a27003f1bb335c18148b420629796148c26b59f3a
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY/wrS:hDXWipuE+K3/SSHgxm/1

Score

7^/10

Malware Config

Targets

- Target
  
  19ca53e94f4c60813da5ccf75eb14f33_JaffaCakes118
- Size
  
  15KB
- MD5
  
  19ca53e94f4c60813da5ccf75eb14f33
- SHA1
  
  c3007a4f24814409eb60f32dafc4ccb1aef77d03
- SHA256
  
  dabdc10d4cb05ca35950fd529b3a08dfe9e19621e12437795268b8615202377c
- SHA512
  
  2c6fb4615cc09db3ce18002384ef2757f09e9ad2d50e3d33ebd8a53e51607d6da8a1ccdb6908b5fdeb14620a27003f1bb335c18148b420629796148c26b59f3a
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY/wrS:hDXWipuE+K3/SSHgxm/1
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2