df925a665353ec76c444187087f793c4feac14e920b9f84fc125ab2a750e53a0 | Triage

Sharing

General

Target

1d60d1382af76bc9f89568d97784a2a7_JaffaCakes118
Size

16KB
Sample

240329-kdepaadb5w
MD5

1d60d1382af76bc9f89568d97784a2a7
SHA1

5c31dc975f6664ff03d39934aeada5103a549449
SHA256

df925a665353ec76c444187087f793c4feac14e920b9f84fc125ab2a750e53a0
SHA512

86df541f4db153ae5e4c45bccb7ed422d263ac5cb1453bad026507311fda8ea29e8284d17e4874800f6c4cc6ef9e45284f057f243a9dd9e03cca1ca93e66d4ac
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhD8ZO:hDXWipuE+K3/SSHgxt6O

Score

7^/10

Malware Config

Targets

- Target
  
  1d60d1382af76bc9f89568d97784a2a7_JaffaCakes118
- Size
  
  16KB
- MD5
  
  1d60d1382af76bc9f89568d97784a2a7
- SHA1
  
  5c31dc975f6664ff03d39934aeada5103a549449
- SHA256
  
  df925a665353ec76c444187087f793c4feac14e920b9f84fc125ab2a750e53a0
- SHA512
  
  86df541f4db153ae5e4c45bccb7ed422d263ac5cb1453bad026507311fda8ea29e8284d17e4874800f6c4cc6ef9e45284f057f243a9dd9e03cca1ca93e66d4ac
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhD8ZO:hDXWipuE+K3/SSHgxt6O
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2