ff397a5b3045b56fcad227ecebb2abcf8ad8e58139d9904d0e8717e2bdf46264 | Triage

Sharing

General

Target

d0d5eb0f73f8e1f99c572ee289ab69ed_JaffaCakes118
Size

15KB
Sample

240405-l8ztdahh58
MD5

d0d5eb0f73f8e1f99c572ee289ab69ed
SHA1

102f2dd331adca70c1fa171b239235e35f894123
SHA256

ff397a5b3045b56fcad227ecebb2abcf8ad8e58139d9904d0e8717e2bdf46264
SHA512

6526bfee4a9fa21414f4efbdec9dea84943833acaf3bf251a09764c2022bd2b1710e0499faf83e823bc2b85f15fba6727476702f9b615750e20eab8133f2ddfb
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhkRQp0H:hDXWipuE+K3/SSHgxUH

Score

7^/10

Malware Config

Targets

- Target
  
  d0d5eb0f73f8e1f99c572ee289ab69ed_JaffaCakes118
- Size
  
  15KB
- MD5
  
  d0d5eb0f73f8e1f99c572ee289ab69ed
- SHA1
  
  102f2dd331adca70c1fa171b239235e35f894123
- SHA256
  
  ff397a5b3045b56fcad227ecebb2abcf8ad8e58139d9904d0e8717e2bdf46264
- SHA512
  
  6526bfee4a9fa21414f4efbdec9dea84943833acaf3bf251a09764c2022bd2b1710e0499faf83e823bc2b85f15fba6727476702f9b615750e20eab8133f2ddfb
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhkRQp0H:hDXWipuE+K3/SSHgxUH
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2