710952d934d3e3d9bed34967fdec4745ea21e1b31606f203493a6efedad784f7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1b8990543b6ca2b30583e46f6327af29_JaffaCakes118
Size

16KB
Sample

240329-hqcdkscf44
MD5

1b8990543b6ca2b30583e46f6327af29
SHA1

eb6daeea8ac07a52de28e1028394879eeb074fa1
SHA256

710952d934d3e3d9bed34967fdec4745ea21e1b31606f203493a6efedad784f7
SHA512

624aad5fe9b9b46a2c08a1a8aafdd0d4717dd9323d5ff8d2f5d56df07e4b4de65e09298e99a5db173493b570d89956b5623b4342f43450f43449d275049d24d8
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv5JQ:hDXWipuE+K3/SSHgxl5u

Score

7^/10

Malware Config

Targets

- Target
  
  1b8990543b6ca2b30583e46f6327af29_JaffaCakes118
- Size
  
  16KB
- MD5
  
  1b8990543b6ca2b30583e46f6327af29
- SHA1
  
  eb6daeea8ac07a52de28e1028394879eeb074fa1
- SHA256
  
  710952d934d3e3d9bed34967fdec4745ea21e1b31606f203493a6efedad784f7
- SHA512
  
  624aad5fe9b9b46a2c08a1a8aafdd0d4717dd9323d5ff8d2f5d56df07e4b4de65e09298e99a5db173493b570d89956b5623b4342f43450f43449d275049d24d8
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv5JQ:hDXWipuE+K3/SSHgxl5u
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2