1f7da0bd7f0a915575c9bc9da281022fc63982644c2dec2f24494864b112b9ed | Triage

Sharing

General

Target

23eb3df84269b7dece78a7777523e300_JaffaCakes118
Size

15KB
Sample

240329-rcaghaab3w
MD5

23eb3df84269b7dece78a7777523e300
SHA1

f4ff028d2196d28baefab4c58c266afe25138ce8
SHA256

1f7da0bd7f0a915575c9bc9da281022fc63982644c2dec2f24494864b112b9ed
SHA512

844d0251a35e5a25e1554f505772a4c6713111b81ef91eb46a54ed812c511d2f5ad02b59e150ec6280e4c0fff3f7cff581a1faddb758a9bb7e4c87b24c831bde
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4X:hDXWipuE+K3/SSHgxmW

Score

7^/10

Malware Config

Targets

- Target
  
  23eb3df84269b7dece78a7777523e300_JaffaCakes118
- Size
  
  15KB
- MD5
  
  23eb3df84269b7dece78a7777523e300
- SHA1
  
  f4ff028d2196d28baefab4c58c266afe25138ce8
- SHA256
  
  1f7da0bd7f0a915575c9bc9da281022fc63982644c2dec2f24494864b112b9ed
- SHA512
  
  844d0251a35e5a25e1554f505772a4c6713111b81ef91eb46a54ed812c511d2f5ad02b59e150ec6280e4c0fff3f7cff581a1faddb758a9bb7e4c87b24c831bde
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4X:hDXWipuE+K3/SSHgxmW
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2