40ac8b0693ce54668588b9097e9764ed1d1c1505e9da69c7a8760e4fc0032311 | Triage

Sharing

General

Target

c454e7e2f02b1bcf216f2739cf3c9d1d_JaffaCakes118
Size

20KB
Sample

240404-26yfjadh23
MD5

c454e7e2f02b1bcf216f2739cf3c9d1d
SHA1

18a9185239b1da38ff414a2fd8e762ca5f1017c3
SHA256

40ac8b0693ce54668588b9097e9764ed1d1c1505e9da69c7a8760e4fc0032311
SHA512

bc9bfa3859383c79856df487e512ff719f70c392ef9997cbb456b3f65f18384e790f40b0a3bd4bf3897d5c96cba2c438a4cc5d954a0aa4dd42d6dafa12cf1cdb
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4P8UzM:hDXWipuE+K3/SSHgxmHZPC

Score

7^/10

Malware Config

Targets

- Target
  
  c454e7e2f02b1bcf216f2739cf3c9d1d_JaffaCakes118
- Size
  
  20KB
- MD5
  
  c454e7e2f02b1bcf216f2739cf3c9d1d
- SHA1
  
  18a9185239b1da38ff414a2fd8e762ca5f1017c3
- SHA256
  
  40ac8b0693ce54668588b9097e9764ed1d1c1505e9da69c7a8760e4fc0032311
- SHA512
  
  bc9bfa3859383c79856df487e512ff719f70c392ef9997cbb456b3f65f18384e790f40b0a3bd4bf3897d5c96cba2c438a4cc5d954a0aa4dd42d6dafa12cf1cdb
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4P8UzM:hDXWipuE+K3/SSHgxmHZPC
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2