8eb788a5287bd7448268bb2dffd9b08b2802bac0cfeddef61422f31f822495f6 | Triage

Sharing

General

Target

ccf28598db11ab28f393f0bb5789ed97_JaffaCakes118
Size

15KB
Sample

240405-hvz1faea8t
MD5

ccf28598db11ab28f393f0bb5789ed97
SHA1

3413b1746fbc52d41d40545312d7c8a234d4fadb
SHA256

8eb788a5287bd7448268bb2dffd9b08b2802bac0cfeddef61422f31f822495f6
SHA512

d320334c774ee7e3e58bcce59e44f01dbc9a45c85bada2f692613366b61e63d53e52f7d4641d27809f3ea5e7ac10a85cb53b45ecaa367f7a4775ea6696331313
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYyhQ:hDXWipuE+K3/SSHgxmyhQ

Score

7^/10

Malware Config

Targets

- Target
  
  ccf28598db11ab28f393f0bb5789ed97_JaffaCakes118
- Size
  
  15KB
- MD5
  
  ccf28598db11ab28f393f0bb5789ed97
- SHA1
  
  3413b1746fbc52d41d40545312d7c8a234d4fadb
- SHA256
  
  8eb788a5287bd7448268bb2dffd9b08b2802bac0cfeddef61422f31f822495f6
- SHA512
  
  d320334c774ee7e3e58bcce59e44f01dbc9a45c85bada2f692613366b61e63d53e52f7d4641d27809f3ea5e7ac10a85cb53b45ecaa367f7a4775ea6696331313
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYyhQ:hDXWipuE+K3/SSHgxmyhQ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2