f9947b0106f08578f821a43e0e62417cc278ce1a5ba1a8aba4686785764d7c6c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d05a062f7db877c2fddbd518d0096caf_JaffaCakes118
Size

34KB
Sample

240405-lttntahc73
MD5

d05a062f7db877c2fddbd518d0096caf
SHA1

1450a804260e8943924d0d7634e501b9a08e4778
SHA256

f9947b0106f08578f821a43e0e62417cc278ce1a5ba1a8aba4686785764d7c6c
SHA512

252c842d4ee2e39ec7f66c61501eaa1d9f04d58b4eb4b72e7b2384cec3a40418013caee95ca6499a80778c4b7292b079c17649296538ec6ce87b8a07d8671b6b
SSDEEP

192:RBVfonwR21BA/WjOIut72DbURpF7twhec0r0C2vXH6ClWkukk12O+Uc6M7:xfonwR21BFjABJVr1gXlWr+Ucl

Score

7^/10

Malware Config

Targets

- Target
  
  d05a062f7db877c2fddbd518d0096caf_JaffaCakes118
- Size
  
  34KB
- MD5
  
  d05a062f7db877c2fddbd518d0096caf
- SHA1
  
  1450a804260e8943924d0d7634e501b9a08e4778
- SHA256
  
  f9947b0106f08578f821a43e0e62417cc278ce1a5ba1a8aba4686785764d7c6c
- SHA512
  
  252c842d4ee2e39ec7f66c61501eaa1d9f04d58b4eb4b72e7b2384cec3a40418013caee95ca6499a80778c4b7292b079c17649296538ec6ce87b8a07d8671b6b
- SSDEEP
  
  192:RBVfonwR21BA/WjOIut72DbURpF7twhec0r0C2vXH6ClWkukk12O+Uc6M7:xfonwR21BFjABJVr1gXlWr+Ucl
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2