155f4ffae8576048c7da7bc47da2c979bd88c9553fa987767be9e011a1e27cf9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2a1493a4756b36ef0f8deb10ee6af607_JaffaCakes118
Size

15KB
Sample

240329-xkna8aga55
MD5

2a1493a4756b36ef0f8deb10ee6af607
SHA1

71571a72db72b2c039aed521bb602a60de86743f
SHA256

155f4ffae8576048c7da7bc47da2c979bd88c9553fa987767be9e011a1e27cf9
SHA512

95e16b353b145741d0903d704ba909088508d6ae3fb0d537856a1bd79410a984534bb527d0114b741b49237ac8321d6a5b91f6cfb566f4c2f19e9bd0bd1b54a9
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4l+LgJ9:hDXWipuE+K3/SSHgxmYJ9

Score

7^/10

Malware Config

Targets

- Target
  
  2a1493a4756b36ef0f8deb10ee6af607_JaffaCakes118
- Size
  
  15KB
- MD5
  
  2a1493a4756b36ef0f8deb10ee6af607
- SHA1
  
  71571a72db72b2c039aed521bb602a60de86743f
- SHA256
  
  155f4ffae8576048c7da7bc47da2c979bd88c9553fa987767be9e011a1e27cf9
- SHA512
  
  95e16b353b145741d0903d704ba909088508d6ae3fb0d537856a1bd79410a984534bb527d0114b741b49237ac8321d6a5b91f6cfb566f4c2f19e9bd0bd1b54a9
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4l+LgJ9:hDXWipuE+K3/SSHgxmYJ9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2