9d358b5c6fac7643fda635cf31d2a627a1225c122a6e10c5df6252135168b436 | Triage

Sharing

General

Target

c04d5d196885ede724a09302c3c24199_JaffaCakes118
Size

15KB
Sample

240404-xrktnsfe6w
MD5

c04d5d196885ede724a09302c3c24199
SHA1

6f1e43fecc44e77c23f0e94bf14c0af7512c373e
SHA256

9d358b5c6fac7643fda635cf31d2a627a1225c122a6e10c5df6252135168b436
SHA512

f1758b93a3b8b6d38d128fcde88807c86be69808ac6e4a439fa56dc43fe2239f8012ddb231e04165292bab8b6abea9d5e64b1e7501c4f65208acd7b6871e9d38
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh4cnwO:hDXWipuE+K3/SSHgx/wO

Score

7^/10

Malware Config

Targets

- Target
  
  c04d5d196885ede724a09302c3c24199_JaffaCakes118
- Size
  
  15KB
- MD5
  
  c04d5d196885ede724a09302c3c24199
- SHA1
  
  6f1e43fecc44e77c23f0e94bf14c0af7512c373e
- SHA256
  
  9d358b5c6fac7643fda635cf31d2a627a1225c122a6e10c5df6252135168b436
- SHA512
  
  f1758b93a3b8b6d38d128fcde88807c86be69808ac6e4a439fa56dc43fe2239f8012ddb231e04165292bab8b6abea9d5e64b1e7501c4f65208acd7b6871e9d38
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh4cnwO:hDXWipuE+K3/SSHgx/wO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2