d92cb5264a1281f5a095cae6c846fdbf22f6d4b91cd7a575aa2139b092cb833e | Triage

Sharing

General

Target

21db749271863397b378d6326c4253f7_JaffaCakes118
Size

16KB
Sample

240329-pjq2qahc58
MD5

21db749271863397b378d6326c4253f7
SHA1

c48c074b779a506f5685d9b47f57fa799da62ede
SHA256

d92cb5264a1281f5a095cae6c846fdbf22f6d4b91cd7a575aa2139b092cb833e
SHA512

338c3dd57478a46bcf43edaee5468b5d66b026faa12922d2467f2c5476c6f2839771330dc38731d9897a8cd00fe24ebfcdd7aced9ed0142b2d7b4b19b7e84779
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlK:hDXWipuE+K3/SSHgxmlK

Score

7^/10

Malware Config

Targets

- Target
  
  21db749271863397b378d6326c4253f7_JaffaCakes118
- Size
  
  16KB
- MD5
  
  21db749271863397b378d6326c4253f7
- SHA1
  
  c48c074b779a506f5685d9b47f57fa799da62ede
- SHA256
  
  d92cb5264a1281f5a095cae6c846fdbf22f6d4b91cd7a575aa2139b092cb833e
- SHA512
  
  338c3dd57478a46bcf43edaee5468b5d66b026faa12922d2467f2c5476c6f2839771330dc38731d9897a8cd00fe24ebfcdd7aced9ed0142b2d7b4b19b7e84779
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlK:hDXWipuE+K3/SSHgxmlK
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2