9ffc3978c63c4f750a4b999d9f0ef69d4ce84194c47b7e2a4736cc1dc333f45d | Triage

Sharing

General

Target

c961b92bcd7d10f9e51d8729f98c6c23_JaffaCakes118
Size

16KB
Sample

240405-dwphwaah41
MD5

c961b92bcd7d10f9e51d8729f98c6c23
SHA1

ee179558b02b5d3322f4119cf8161751d056b087
SHA256

9ffc3978c63c4f750a4b999d9f0ef69d4ce84194c47b7e2a4736cc1dc333f45d
SHA512

3752813d5ffcf014b63bc46b444c38d1d6f0bca05a75ef52d06f12ad4221ab5cdae842c7f01e2d02e2935801ded9e58a5039d1a258095826fe2edcaab306b083
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlOjZ:hDXWipuE+K3/SSHgxmlWZ

Score

7^/10

Malware Config

Targets

- Target
  
  c961b92bcd7d10f9e51d8729f98c6c23_JaffaCakes118
- Size
  
  16KB
- MD5
  
  c961b92bcd7d10f9e51d8729f98c6c23
- SHA1
  
  ee179558b02b5d3322f4119cf8161751d056b087
- SHA256
  
  9ffc3978c63c4f750a4b999d9f0ef69d4ce84194c47b7e2a4736cc1dc333f45d
- SHA512
  
  3752813d5ffcf014b63bc46b444c38d1d6f0bca05a75ef52d06f12ad4221ab5cdae842c7f01e2d02e2935801ded9e58a5039d1a258095826fe2edcaab306b083
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlOjZ:hDXWipuE+K3/SSHgxmlWZ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2