266ae15d7eb24bbeadae42e9a7ed31dd99c1ea954197a762547b6d85cc7be86d | Triage

Sharing

General

Target

c77589d49fba08a129ff3fa1012d2709_JaffaCakes118
Size

14KB
Sample

240405-b61yjshf26
MD5

c77589d49fba08a129ff3fa1012d2709
SHA1

30c5618c55d226880493435e823b1e01cf27b023
SHA256

266ae15d7eb24bbeadae42e9a7ed31dd99c1ea954197a762547b6d85cc7be86d
SHA512

f280c69eaadfdab581ef354067d182c77b114af823b335c99647281a1372a6aa5f2f90b6de4b3e0e1faa6a4fd2df6b60a2a17ee015f306478746b5bef3630d5c
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5u:hDXWipuE+K3/SSHgxm8

Score

7^/10

Malware Config

Targets

- Target
  
  c77589d49fba08a129ff3fa1012d2709_JaffaCakes118
- Size
  
  14KB
- MD5
  
  c77589d49fba08a129ff3fa1012d2709
- SHA1
  
  30c5618c55d226880493435e823b1e01cf27b023
- SHA256
  
  266ae15d7eb24bbeadae42e9a7ed31dd99c1ea954197a762547b6d85cc7be86d
- SHA512
  
  f280c69eaadfdab581ef354067d182c77b114af823b335c99647281a1372a6aa5f2f90b6de4b3e0e1faa6a4fd2df6b60a2a17ee015f306478746b5bef3630d5c
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5u:hDXWipuE+K3/SSHgxm8
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2