dc2382f09762cd8aa38cb8c105e868fde7126f0ab65fd927caefe4d2bee50bb7 | Triage

Sharing

General

Target

24fa94625066e5663877e8deead596f6_JaffaCakes118
Size

15KB
Sample

240329-r92l9aah3w
MD5

24fa94625066e5663877e8deead596f6
SHA1

a18f6fe46464f17a88e4c8e4c49534ddcb1706e9
SHA256

dc2382f09762cd8aa38cb8c105e868fde7126f0ab65fd927caefe4d2bee50bb7
SHA512

7ad07376750f9fd8cfcb4c4302c3ac2c02493dfed91e2d3b71752bb01092a027da3fcfd15cf36b14da46a2b2cfd051b949233c4269e54a86d7ef18129b05cc8e
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYyhudcO:hDXWipuE+K3/SSHgxmyhudcO

Score

7^/10

Malware Config

Targets

- Target
  
  24fa94625066e5663877e8deead596f6_JaffaCakes118
- Size
  
  15KB
- MD5
  
  24fa94625066e5663877e8deead596f6
- SHA1
  
  a18f6fe46464f17a88e4c8e4c49534ddcb1706e9
- SHA256
  
  dc2382f09762cd8aa38cb8c105e868fde7126f0ab65fd927caefe4d2bee50bb7
- SHA512
  
  7ad07376750f9fd8cfcb4c4302c3ac2c02493dfed91e2d3b71752bb01092a027da3fcfd15cf36b14da46a2b2cfd051b949233c4269e54a86d7ef18129b05cc8e
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYyhudcO:hDXWipuE+K3/SSHgxmyhudcO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2