e60bd2ee2c44bdab99101ee83b90cb2b9060a86e99b2759bb174cef25abce06c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cbb9668a25cb76bac11b048f4fded79a_JaffaCakes118
Size

15KB
Sample

240405-fvf68adc78
MD5

cbb9668a25cb76bac11b048f4fded79a
SHA1

9519542901b109b53059894c00c9bd66d75a1e53
SHA256

e60bd2ee2c44bdab99101ee83b90cb2b9060a86e99b2759bb174cef25abce06c
SHA512

3df60750552f3d84c42b56a651c3d264c71e6bcd148f9eeff11b2c3ea0102ba27e85fb27f45d28364cea18e6138f9cc5ef8ee299dd34e35657a9903597dc40ef
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhhiwa:hDXWipuE+K3/SSHgxLi/

Score

7^/10

Malware Config

Targets

- Target
  
  cbb9668a25cb76bac11b048f4fded79a_JaffaCakes118
- Size
  
  15KB
- MD5
  
  cbb9668a25cb76bac11b048f4fded79a
- SHA1
  
  9519542901b109b53059894c00c9bd66d75a1e53
- SHA256
  
  e60bd2ee2c44bdab99101ee83b90cb2b9060a86e99b2759bb174cef25abce06c
- SHA512
  
  3df60750552f3d84c42b56a651c3d264c71e6bcd148f9eeff11b2c3ea0102ba27e85fb27f45d28364cea18e6138f9cc5ef8ee299dd34e35657a9903597dc40ef
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhhiwa:hDXWipuE+K3/SSHgxLi/
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2