060d8d92ff5a5127139ce94d47775c7850a039f350443e644ae4b9051c80e8b6 | Triage

Sharing

General

Target

c2a18284c8ac583ac2932e8babfa55fe_JaffaCakes118
Size

16KB
Sample

240404-ztfzlsac4s
MD5

c2a18284c8ac583ac2932e8babfa55fe
SHA1

d096bb1bcf17285164aa1d0fb65e760d5afea8cd
SHA256

060d8d92ff5a5127139ce94d47775c7850a039f350443e644ae4b9051c80e8b6
SHA512

b613e2f1446a79ae5cf49dd15064b33160e451a84e5a4ea2f2b077eda1dc26e593b55c8cfdc854c897a0c4609abcd0531bdf73847849a257774dc0c6f2eb0b43
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx4mZh:hDXWipuE+K3/SSHgxmHFz

Score

7^/10

Malware Config

Targets

- Target
  
  c2a18284c8ac583ac2932e8babfa55fe_JaffaCakes118
- Size
  
  16KB
- MD5
  
  c2a18284c8ac583ac2932e8babfa55fe
- SHA1
  
  d096bb1bcf17285164aa1d0fb65e760d5afea8cd
- SHA256
  
  060d8d92ff5a5127139ce94d47775c7850a039f350443e644ae4b9051c80e8b6
- SHA512
  
  b613e2f1446a79ae5cf49dd15064b33160e451a84e5a4ea2f2b077eda1dc26e593b55c8cfdc854c897a0c4609abcd0531bdf73847849a257774dc0c6f2eb0b43
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx4mZh:hDXWipuE+K3/SSHgxmHFz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2