ad5a7ad19c18cbd7e1dafe9ea10aed8abe10e9a5031af98f8f5ca4630954d8a6 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c11bdd053c6b4786daff103a927c57ac_JaffaCakes118
Size

16KB
Sample

240404-ygbcxsge5s
MD5

c11bdd053c6b4786daff103a927c57ac
SHA1

de8c26e0862b7be634d5d21b0b40fdc7905ebb85
SHA256

ad5a7ad19c18cbd7e1dafe9ea10aed8abe10e9a5031af98f8f5ca4630954d8a6
SHA512

783bb29aab7c4746046291294f7e6b9dbe2e640d4cd31d68e7b66c175cda518d88d6e2c5f98a82292f3c2d28b3135b7142feadc8ee00eeb2ce983bd81ca7f414
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYHzM:hDXWipuE+K3/SSHgxmHQ

Score

7^/10

Malware Config

Targets

- Target
  
  c11bdd053c6b4786daff103a927c57ac_JaffaCakes118
- Size
  
  16KB
- MD5
  
  c11bdd053c6b4786daff103a927c57ac
- SHA1
  
  de8c26e0862b7be634d5d21b0b40fdc7905ebb85
- SHA256
  
  ad5a7ad19c18cbd7e1dafe9ea10aed8abe10e9a5031af98f8f5ca4630954d8a6
- SHA512
  
  783bb29aab7c4746046291294f7e6b9dbe2e640d4cd31d68e7b66c175cda518d88d6e2c5f98a82292f3c2d28b3135b7142feadc8ee00eeb2ce983bd81ca7f414
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYHzM:hDXWipuE+K3/SSHgxmHQ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2