cdd2cb662e505e42198f303013daef80b91a1046de53c70aa40b75a17a7056f7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1f157fdf782f9d53edb0b23311453a6f_JaffaCakes118
Size

16KB
Sample

240329-l175saed6v
MD5

1f157fdf782f9d53edb0b23311453a6f
SHA1

2b080e0c2c8d87f0acabcd4e60cd209674566425
SHA256

cdd2cb662e505e42198f303013daef80b91a1046de53c70aa40b75a17a7056f7
SHA512

2a506be099ff03a8a92496f4a3a1bf3e3b59ba4748414132a4831fec6e7171df12795d44e71f32ddd424b767ca348681eaba6179409173fe587a5dc21787c5aa
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhA0ma:hDXWipuE+K3/SSHgxR3

Score

7^/10

Malware Config

Targets

- Target
  
  1f157fdf782f9d53edb0b23311453a6f_JaffaCakes118
- Size
  
  16KB
- MD5
  
  1f157fdf782f9d53edb0b23311453a6f
- SHA1
  
  2b080e0c2c8d87f0acabcd4e60cd209674566425
- SHA256
  
  cdd2cb662e505e42198f303013daef80b91a1046de53c70aa40b75a17a7056f7
- SHA512
  
  2a506be099ff03a8a92496f4a3a1bf3e3b59ba4748414132a4831fec6e7171df12795d44e71f32ddd424b767ca348681eaba6179409173fe587a5dc21787c5aa
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhA0ma:hDXWipuE+K3/SSHgxR3
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2