5c0f017148ab8aba86568978960c0ea3b3686def7f6185fb241b84d58dfca034 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cc3a7be66005c90c345823ffce665e91_JaffaCakes118
Size

15KB
Sample

240405-gablnsdf88
MD5

cc3a7be66005c90c345823ffce665e91
SHA1

4e18176348d251d110c914a50c08cb54bd4b552a
SHA256

5c0f017148ab8aba86568978960c0ea3b3686def7f6185fb241b84d58dfca034
SHA512

1961cf137bf1b42d87ef7257dcce1b3e5700a46f0a7a9f8f369e3885b55697910489a11af0cfa47d2fc4440bfa0fd3e64d16f92a7c1cfc848228f3d2f0d34409
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhkRwju:hDXWipuE+K3/SSHgxDju

Score

7^/10

Malware Config

Targets

- Target
  
  cc3a7be66005c90c345823ffce665e91_JaffaCakes118
- Size
  
  15KB
- MD5
  
  cc3a7be66005c90c345823ffce665e91
- SHA1
  
  4e18176348d251d110c914a50c08cb54bd4b552a
- SHA256
  
  5c0f017148ab8aba86568978960c0ea3b3686def7f6185fb241b84d58dfca034
- SHA512
  
  1961cf137bf1b42d87ef7257dcce1b3e5700a46f0a7a9f8f369e3885b55697910489a11af0cfa47d2fc4440bfa0fd3e64d16f92a7c1cfc848228f3d2f0d34409
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhkRwju:hDXWipuE+K3/SSHgxDju
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2