39897d9370763b63b14ff3e57abd9bd7f590d7a19586ee32afe2f9df191ba009 | Triage

Sharing

General

Target

c9e277601c4bedaba072f547c145c3c5_JaffaCakes118
Size

14KB
Sample

240405-d99e7sbc71
MD5

c9e277601c4bedaba072f547c145c3c5
SHA1

a4b725665c0f7ce654989b80fdba168096de776d
SHA256

39897d9370763b63b14ff3e57abd9bd7f590d7a19586ee32afe2f9df191ba009
SHA512

dbbd47e998fce696d72efc82083537bc39eda85aad03d331b880959ef864ae66640680e895360d904a630c4db01fbd617dcb79bef8644e506fe1a4c1ec1a8495
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZXdH2Q:hDXWipuE+K3/SSHgx3NH2Q

Score

7^/10

Malware Config

Targets

- Target
  
  c9e277601c4bedaba072f547c145c3c5_JaffaCakes118
- Size
  
  14KB
- MD5
  
  c9e277601c4bedaba072f547c145c3c5
- SHA1
  
  a4b725665c0f7ce654989b80fdba168096de776d
- SHA256
  
  39897d9370763b63b14ff3e57abd9bd7f590d7a19586ee32afe2f9df191ba009
- SHA512
  
  dbbd47e998fce696d72efc82083537bc39eda85aad03d331b880959ef864ae66640680e895360d904a630c4db01fbd617dcb79bef8644e506fe1a4c1ec1a8495
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZXdH2Q:hDXWipuE+K3/SSHgx3NH2Q
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2