f1b9313f7a031b09da82d272f0300925440766858a0a2a3166ae640a714e03d6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bdcd3830e6c8b4a7b870338c692b9ff5_JaffaCakes118
Size

15KB
Sample

240404-vkh1dsdg76
MD5

bdcd3830e6c8b4a7b870338c692b9ff5
SHA1

d9ad75591ad324ce3d47a1e1469a72836b72a371
SHA256

f1b9313f7a031b09da82d272f0300925440766858a0a2a3166ae640a714e03d6
SHA512

37aca9fb0330157ff56909b76700216d3570cc1e007150e7121b02d66ccc60d8eded72b07e9bb89f01cabd1026fb7ca53bbca00cb9ca07262c69c139496d8382
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYyh6AB:hDXWipuE+K3/SSHgxmyh6U

Score

7^/10

Malware Config

Targets

- Target
  
  bdcd3830e6c8b4a7b870338c692b9ff5_JaffaCakes118
- Size
  
  15KB
- MD5
  
  bdcd3830e6c8b4a7b870338c692b9ff5
- SHA1
  
  d9ad75591ad324ce3d47a1e1469a72836b72a371
- SHA256
  
  f1b9313f7a031b09da82d272f0300925440766858a0a2a3166ae640a714e03d6
- SHA512
  
  37aca9fb0330157ff56909b76700216d3570cc1e007150e7121b02d66ccc60d8eded72b07e9bb89f01cabd1026fb7ca53bbca00cb9ca07262c69c139496d8382
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYyh6AB:hDXWipuE+K3/SSHgxmyh6U
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2