611ca5bc235fb7c66841b8193ddb83b66d6741a6d53909613a4457abd43a6162 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

c7de435ec78f03bd2e0876f3ff25803b_JaffaCakes118
Size

16KB
Sample

240405-cjebpshd3y
MD5

c7de435ec78f03bd2e0876f3ff25803b
SHA1

1e46a980e988cf8a6224e5f2a3f75e816cc3275b
SHA256

611ca5bc235fb7c66841b8193ddb83b66d6741a6d53909613a4457abd43a6162
SHA512

2c9034d768259775b3d052126b06a790dbb65258cc2f5419e277dbc506c369c29b894bfa82c43a0b62674f3c8bf6c1a6bdbd67d181489f9e163b56904e18323f
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhK8:hDXWipuE+K3/SSHgxb

Score

7^/10

Malware Config

Targets

- Target
  
  c7de435ec78f03bd2e0876f3ff25803b_JaffaCakes118
- Size
  
  16KB
- MD5
  
  c7de435ec78f03bd2e0876f3ff25803b
- SHA1
  
  1e46a980e988cf8a6224e5f2a3f75e816cc3275b
- SHA256
  
  611ca5bc235fb7c66841b8193ddb83b66d6741a6d53909613a4457abd43a6162
- SHA512
  
  2c9034d768259775b3d052126b06a790dbb65258cc2f5419e277dbc506c369c29b894bfa82c43a0b62674f3c8bf6c1a6bdbd67d181489f9e163b56904e18323f
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhK8:hDXWipuE+K3/SSHgxb
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2