0d833e719d93403e66b29861ba178daabee52e91c0afd051af6f075e5030d2cd | Triage

Sharing

General

Target

1c6d59271e05d417695f7c9c7c283838_JaffaCakes118
Size

15KB
Sample

240329-jf6p4sdc23
MD5

1c6d59271e05d417695f7c9c7c283838
SHA1

e8e8d5b5a4bed12f82eadb4672b2992b1d7b81ad
SHA256

0d833e719d93403e66b29861ba178daabee52e91c0afd051af6f075e5030d2cd
SHA512

fca12859cc4350be7440ddbd65c370db8f3c64c418d04e30ff10eee1f5fa0ab88eeffbc6f40c8fa69206b60fb60c4bbb223f755a8ec002cf111993eac41748f7
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY8YBO:hDXWipuE+K3/SSHgxm8eO

Score

7^/10

Malware Config

Targets

- Target
  
  1c6d59271e05d417695f7c9c7c283838_JaffaCakes118
- Size
  
  15KB
- MD5
  
  1c6d59271e05d417695f7c9c7c283838
- SHA1
  
  e8e8d5b5a4bed12f82eadb4672b2992b1d7b81ad
- SHA256
  
  0d833e719d93403e66b29861ba178daabee52e91c0afd051af6f075e5030d2cd
- SHA512
  
  fca12859cc4350be7440ddbd65c370db8f3c64c418d04e30ff10eee1f5fa0ab88eeffbc6f40c8fa69206b60fb60c4bbb223f755a8ec002cf111993eac41748f7
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY8YBO:hDXWipuE+K3/SSHgxm8eO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2