aed76d687e846172c5880c18c3a7d839534839582ee6f7bc8c24ab4ab713c5c7 | Triage

Sharing

General

Target

1e068e2f2e9f47c97f0d525e068af993_JaffaCakes118
Size

15KB
Sample

240329-k15tzsed99
MD5

1e068e2f2e9f47c97f0d525e068af993
SHA1

963203337909761e6bd4995aef7d747140a32416
SHA256

aed76d687e846172c5880c18c3a7d839534839582ee6f7bc8c24ab4ab713c5c7
SHA512

00439cf037e5cbf9be1f3b801008278c36e5fba7219dce360b64b2cb58316340a68ad70b710ff192dbba244d397e9e12fff00680d2c3e1e210e77c2884377a9d
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhkRwjL:hDXWipuE+K3/SSHgxDjL

Score

7^/10

Malware Config

Targets

- Target
  
  1e068e2f2e9f47c97f0d525e068af993_JaffaCakes118
- Size
  
  15KB
- MD5
  
  1e068e2f2e9f47c97f0d525e068af993
- SHA1
  
  963203337909761e6bd4995aef7d747140a32416
- SHA256
  
  aed76d687e846172c5880c18c3a7d839534839582ee6f7bc8c24ab4ab713c5c7
- SHA512
  
  00439cf037e5cbf9be1f3b801008278c36e5fba7219dce360b64b2cb58316340a68ad70b710ff192dbba244d397e9e12fff00680d2c3e1e210e77c2884377a9d
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhkRwjL:hDXWipuE+K3/SSHgxDjL
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2