b38c7845a1a1dca4b08318bbec8f646f3e19f7dc65156120c933835a5f501954 | Triage

Sharing

General

Target

29ed5766c3c0f4017f646d01ae95ab89_JaffaCakes118
Size

16KB
Sample

240329-xfg9eafh23
MD5

29ed5766c3c0f4017f646d01ae95ab89
SHA1

5d53769c07eaf0f117b7e1bdd35db2cb79c9e77a
SHA256

b38c7845a1a1dca4b08318bbec8f646f3e19f7dc65156120c933835a5f501954
SHA512

69de70a05d6d7922314382210acd5a7dd1094d1827c4dac6ec2f5d0381af472c672c7030db04ef007612164a48374916e4da3a945ab13ecea21bfa1cd4dda751
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv5ZWu:hDXWipuE+K3/SSHgxl5n

Score

7^/10

Malware Config

Targets

- Target
  
  29ed5766c3c0f4017f646d01ae95ab89_JaffaCakes118
- Size
  
  16KB
- MD5
  
  29ed5766c3c0f4017f646d01ae95ab89
- SHA1
  
  5d53769c07eaf0f117b7e1bdd35db2cb79c9e77a
- SHA256
  
  b38c7845a1a1dca4b08318bbec8f646f3e19f7dc65156120c933835a5f501954
- SHA512
  
  69de70a05d6d7922314382210acd5a7dd1094d1827c4dac6ec2f5d0381af472c672c7030db04ef007612164a48374916e4da3a945ab13ecea21bfa1cd4dda751
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv5ZWu:hDXWipuE+K3/SSHgxl5n
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2