37002e302a6c3137c3423f776e8d758360844741322eabda884422a900c26a07 | Triage

Sharing

General

Target

bd727d638ae580c236196eef293a61ae_JaffaCakes118
Size

16KB
Sample

240404-vapp7acg8t
MD5

bd727d638ae580c236196eef293a61ae
SHA1

00a66c39462ec325521c9b6b1cbd62ace37497a7
SHA256

37002e302a6c3137c3423f776e8d758360844741322eabda884422a900c26a07
SHA512

2da0adaf85f0ba9cdfd58af52077a322c32dd91768b1e2cda906d69fb52edcf8e1ae1d5de7ed1e6e0f86f1ceedd0f7d9f042d6147001de8e44c0b71786dc1c07
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhD8Sac:hDXWipuE+K3/SSHgxtph

Score

7^/10

Malware Config

Targets

- Target
  
  bd727d638ae580c236196eef293a61ae_JaffaCakes118
- Size
  
  16KB
- MD5
  
  bd727d638ae580c236196eef293a61ae
- SHA1
  
  00a66c39462ec325521c9b6b1cbd62ace37497a7
- SHA256
  
  37002e302a6c3137c3423f776e8d758360844741322eabda884422a900c26a07
- SHA512
  
  2da0adaf85f0ba9cdfd58af52077a322c32dd91768b1e2cda906d69fb52edcf8e1ae1d5de7ed1e6e0f86f1ceedd0f7d9f042d6147001de8e44c0b71786dc1c07
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhD8Sac:hDXWipuE+K3/SSHgxtph
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2