b2a27a1b1968315b9e60443e20a585812a930e59c8900c3ad1b0366478d84f76 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c735fc76ad3a83268930ab7a677c356c_JaffaCakes118
Size

16KB
Sample

240405-bzjexsge8z
MD5

c735fc76ad3a83268930ab7a677c356c
SHA1

1e09699a6226150442aed5d845c901742035952f
SHA256

b2a27a1b1968315b9e60443e20a585812a930e59c8900c3ad1b0366478d84f76
SHA512

1ebe64f15b8868b7559ae2b991767cdafd3f7fa0a3bb5a0a69205a867c567256ec9d8835ed2c9fadf5d8ffe4f1fb46c81d80ac5c59ac78a7b7ecc62a38c65905
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZlP:hDXWipuE+K3/SSHgx3lP

Score

7^/10

Malware Config

Targets

- Target
  
  c735fc76ad3a83268930ab7a677c356c_JaffaCakes118
- Size
  
  16KB
- MD5
  
  c735fc76ad3a83268930ab7a677c356c
- SHA1
  
  1e09699a6226150442aed5d845c901742035952f
- SHA256
  
  b2a27a1b1968315b9e60443e20a585812a930e59c8900c3ad1b0366478d84f76
- SHA512
  
  1ebe64f15b8868b7559ae2b991767cdafd3f7fa0a3bb5a0a69205a867c567256ec9d8835ed2c9fadf5d8ffe4f1fb46c81d80ac5c59ac78a7b7ecc62a38c65905
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZlP:hDXWipuE+K3/SSHgx3lP
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2