8be92dfd9142a2b8f231d02a30e73b84aafc6d2af5e14ee46938e419af974de7 | Triage

Sharing

General

Target

1d9e8a7c76d5ecbb3875fdda6023f6a8_JaffaCakes118
Size

14KB
Sample

240329-kmze2seb49
MD5

1d9e8a7c76d5ecbb3875fdda6023f6a8
SHA1

fdaab4c9a6c42b484b18b4a98aa1dd5a1a29cf0c
SHA256

8be92dfd9142a2b8f231d02a30e73b84aafc6d2af5e14ee46938e419af974de7
SHA512

00d24cc5d67be88b9c3a6ca99065f1edb5a0949cde49cae2ecf333b87a1b9c82716686b2e7010c17783610b7ca7da0ad5a767d96f488bb628212681a138bc5f7
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhh79X:hDXWipuE+K3/SSHgxzl

Score

7^/10

Malware Config

Targets

- Target
  
  1d9e8a7c76d5ecbb3875fdda6023f6a8_JaffaCakes118
- Size
  
  14KB
- MD5
  
  1d9e8a7c76d5ecbb3875fdda6023f6a8
- SHA1
  
  fdaab4c9a6c42b484b18b4a98aa1dd5a1a29cf0c
- SHA256
  
  8be92dfd9142a2b8f231d02a30e73b84aafc6d2af5e14ee46938e419af974de7
- SHA512
  
  00d24cc5d67be88b9c3a6ca99065f1edb5a0949cde49cae2ecf333b87a1b9c82716686b2e7010c17783610b7ca7da0ad5a767d96f488bb628212681a138bc5f7
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhh79X:hDXWipuE+K3/SSHgxzl
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2