a3ddeaf31334322966da3d5125e79163713366dcb55d9d7d8382d9f25335159b | Triage

Sharing

General

Target

c465db23493cc8393f7f868f2f0ece3c_JaffaCakes118
Size

14KB
Sample

240404-28r2jadh67
MD5

c465db23493cc8393f7f868f2f0ece3c
SHA1

0aa728e9b13b3c75a8e96d1c9a12483ab14cd84a
SHA256

a3ddeaf31334322966da3d5125e79163713366dcb55d9d7d8382d9f25335159b
SHA512

ae9b9f51e7af26ea107d4b6594f8224dbf3ce291e1870479cf832d91ada060c0912c5060f0a41c9012deaa2cab2a5aef26d22404521641b142e03b2e53cb1396
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhh7qQ:hDXWipuE+K3/SSHgxzL

Score

7^/10

Malware Config

Targets

- Target
  
  c465db23493cc8393f7f868f2f0ece3c_JaffaCakes118
- Size
  
  14KB
- MD5
  
  c465db23493cc8393f7f868f2f0ece3c
- SHA1
  
  0aa728e9b13b3c75a8e96d1c9a12483ab14cd84a
- SHA256
  
  a3ddeaf31334322966da3d5125e79163713366dcb55d9d7d8382d9f25335159b
- SHA512
  
  ae9b9f51e7af26ea107d4b6594f8224dbf3ce291e1870479cf832d91ada060c0912c5060f0a41c9012deaa2cab2a5aef26d22404521641b142e03b2e53cb1396
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhh7qQ:hDXWipuE+K3/SSHgxzL
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2