1c3f1ad869e7cacfedc2db9f638102a4b2f41edb6af7697e3f0486d44d17eb13 | Triage

Sharing

General

Target

c2ccb64b7cc6f8bd3f7438058e056498_JaffaCakes118
Size

14KB
Sample

240404-zztsnaad8v
MD5

c2ccb64b7cc6f8bd3f7438058e056498
SHA1

a26d6b59a4d2b20d660ad42ebdd26f9279ba8db9
SHA256

1c3f1ad869e7cacfedc2db9f638102a4b2f41edb6af7697e3f0486d44d17eb13
SHA512

8511dc556e05848b3b19650780cec7a99652539f200a49bc6456bd9923f4197b9b2f7e4c3d77b7986b699848798ad41553469fbd483dcbf15c76c89de8d9c7eb
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5W:hDXWipuE+K3/SSHgxmI

Score

7^/10

Malware Config

Targets

- Target
  
  c2ccb64b7cc6f8bd3f7438058e056498_JaffaCakes118
- Size
  
  14KB
- MD5
  
  c2ccb64b7cc6f8bd3f7438058e056498
- SHA1
  
  a26d6b59a4d2b20d660ad42ebdd26f9279ba8db9
- SHA256
  
  1c3f1ad869e7cacfedc2db9f638102a4b2f41edb6af7697e3f0486d44d17eb13
- SHA512
  
  8511dc556e05848b3b19650780cec7a99652539f200a49bc6456bd9923f4197b9b2f7e4c3d77b7986b699848798ad41553469fbd483dcbf15c76c89de8d9c7eb
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5W:hDXWipuE+K3/SSHgxmI
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2