b4673a33c0624f91833b49a86cf521df70804cba4f297e6f2357c29d20f08add | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c5a67ae7f08714c8bd9ddb9cf3daae3e_JaffaCakes118
Size

16KB
Sample

240405-akb7mafc46
MD5

c5a67ae7f08714c8bd9ddb9cf3daae3e
SHA1

c8d7a9ee6f49b1292fddfdc8a512c4b9cd580e3b
SHA256

b4673a33c0624f91833b49a86cf521df70804cba4f297e6f2357c29d20f08add
SHA512

dc882cf66d215091b14f5802328380c8c47852324600a4635abf7d121a101f136779acd9c90b2dbbad7aede1e474387defbf62749be43c7abe0238d605ce527f
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhTN:hDXWipuE+K3/SSHgxNN

Score

7^/10

Malware Config

Targets

- Target
  
  c5a67ae7f08714c8bd9ddb9cf3daae3e_JaffaCakes118
- Size
  
  16KB
- MD5
  
  c5a67ae7f08714c8bd9ddb9cf3daae3e
- SHA1
  
  c8d7a9ee6f49b1292fddfdc8a512c4b9cd580e3b
- SHA256
  
  b4673a33c0624f91833b49a86cf521df70804cba4f297e6f2357c29d20f08add
- SHA512
  
  dc882cf66d215091b14f5802328380c8c47852324600a4635abf7d121a101f136779acd9c90b2dbbad7aede1e474387defbf62749be43c7abe0238d605ce527f
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhTN:hDXWipuE+K3/SSHgxNN
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2