ff01511f61745f2cd7a5a46a9942338811605955e4da0463a885c6088a179052 | Triage

Sharing

General

Target

1cb562c9394716febea19bad65da8075_JaffaCakes118
Size

20KB
Sample

240329-jqghzadd96
MD5

1cb562c9394716febea19bad65da8075
SHA1

679586aa2792d6e668e79a1e25bad1f8e9a1d6af
SHA256

ff01511f61745f2cd7a5a46a9942338811605955e4da0463a885c6088a179052
SHA512

5770b96ebfda6b988d7c1b9a0f3babb401af6c031640646633e0b754a6fe06a5705fdf246aff5f4a61b49348b78f577df5d48981fe692a9ff150edf3b392d1b1
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxI:hDXWipuE+K3/SSHgxmH+

Score

7^/10

Malware Config

Targets

- Target
  
  1cb562c9394716febea19bad65da8075_JaffaCakes118
- Size
  
  20KB
- MD5
  
  1cb562c9394716febea19bad65da8075
- SHA1
  
  679586aa2792d6e668e79a1e25bad1f8e9a1d6af
- SHA256
  
  ff01511f61745f2cd7a5a46a9942338811605955e4da0463a885c6088a179052
- SHA512
  
  5770b96ebfda6b988d7c1b9a0f3babb401af6c031640646633e0b754a6fe06a5705fdf246aff5f4a61b49348b78f577df5d48981fe692a9ff150edf3b392d1b1
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMxI:hDXWipuE+K3/SSHgxmH+
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2