c025f72c59127f9244c4fe6c716e614d05c9ae2f765162064e0f2d5b25a5f311 | Triage

Sharing

General

Target

d0cc8b51c66686d121141cea281f6867_JaffaCakes118
Size

14KB
Sample

240405-l7jqrshd4t
MD5

d0cc8b51c66686d121141cea281f6867
SHA1

d131fe5aabe1a57b3e5acdbcfc9b823843157d78
SHA256

c025f72c59127f9244c4fe6c716e614d05c9ae2f765162064e0f2d5b25a5f311
SHA512

294807a3cd03ffae3dff8924cee5d6d724de524e273bff63c1e28a1420fcbb4322e990a185d44fdf4e657f6dd3d0319c687c90239f2dc3cca27d0cd1daaa5d1e
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4YZUN:hDXWipuE+K3/SSHgxm4

Score

7^/10

Malware Config

Targets

- Target
  
  d0cc8b51c66686d121141cea281f6867_JaffaCakes118
- Size
  
  14KB
- MD5
  
  d0cc8b51c66686d121141cea281f6867
- SHA1
  
  d131fe5aabe1a57b3e5acdbcfc9b823843157d78
- SHA256
  
  c025f72c59127f9244c4fe6c716e614d05c9ae2f765162064e0f2d5b25a5f311
- SHA512
  
  294807a3cd03ffae3dff8924cee5d6d724de524e273bff63c1e28a1420fcbb4322e990a185d44fdf4e657f6dd3d0319c687c90239f2dc3cca27d0cd1daaa5d1e
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4YZUN:hDXWipuE+K3/SSHgxm4
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2