f74cf3063220d8ff8754ea7a749c3f90cba4ef1db01e065f263f60050792b120 | Triage

Sharing

General

Target

c3205ba22e31f513db9f555cf4fd7f23_JaffaCakes118
Size

14KB
Sample

240404-z942daag5x
MD5

c3205ba22e31f513db9f555cf4fd7f23
SHA1

799ded4daa2f278d7c8a9b1e63bcc4b676e00733
SHA256

f74cf3063220d8ff8754ea7a749c3f90cba4ef1db01e065f263f60050792b120
SHA512

5cc0a4972fdbe433bebe6d757ffcfc9114d02b3c08dae92b31ff2bcd00237a2ff2253315bfa046a3b44160eb82e72aa6c89edaefc2d1cbaae5f6b15beb9f2acc
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5Hj:hDXWipuE+K3/SSHgxmdj

Score

7^/10

Malware Config

Targets

- Target
  
  c3205ba22e31f513db9f555cf4fd7f23_JaffaCakes118
- Size
  
  14KB
- MD5
  
  c3205ba22e31f513db9f555cf4fd7f23
- SHA1
  
  799ded4daa2f278d7c8a9b1e63bcc4b676e00733
- SHA256
  
  f74cf3063220d8ff8754ea7a749c3f90cba4ef1db01e065f263f60050792b120
- SHA512
  
  5cc0a4972fdbe433bebe6d757ffcfc9114d02b3c08dae92b31ff2bcd00237a2ff2253315bfa046a3b44160eb82e72aa6c89edaefc2d1cbaae5f6b15beb9f2acc
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5Hj:hDXWipuE+K3/SSHgxmdj
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2