18261ad54ae3e97e1315055b8068e81d789097f81cc21579f3ac4883feedac5b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bf6fb96069ee4e78591610445c1d0397_JaffaCakes118
Size

16KB
Sample

240404-wyxw5sef2x
MD5

bf6fb96069ee4e78591610445c1d0397
SHA1

87d13445ddcabad0faff146e2a69492ed1a4a607
SHA256

18261ad54ae3e97e1315055b8068e81d789097f81cc21579f3ac4883feedac5b
SHA512

316f5cded5e6736d487c4a24a0006800978c72c199c6f0382615f3bee5844f4a595a8bb0da26f10b79b8fbe47e6d67f077c320a6ff50e3c1c7bab07e7d000135
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYHziE:hDXWipuE+K3/SSHgxmH9

Score

7^/10

Malware Config

Targets

- Target
  
  bf6fb96069ee4e78591610445c1d0397_JaffaCakes118
- Size
  
  16KB
- MD5
  
  bf6fb96069ee4e78591610445c1d0397
- SHA1
  
  87d13445ddcabad0faff146e2a69492ed1a4a607
- SHA256
  
  18261ad54ae3e97e1315055b8068e81d789097f81cc21579f3ac4883feedac5b
- SHA512
  
  316f5cded5e6736d487c4a24a0006800978c72c199c6f0382615f3bee5844f4a595a8bb0da26f10b79b8fbe47e6d67f077c320a6ff50e3c1c7bab07e7d000135
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYHziE:hDXWipuE+K3/SSHgxmH9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2