c09878d6fa0c362e352b32964e00f14d0912726452838de9ee5263e75bf345e4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d0f7b48359826b896410fe760585236b_JaffaCakes118
Size

16KB
Sample

240405-mcmplshe5t
MD5

d0f7b48359826b896410fe760585236b
SHA1

74c96d508e81dd85a82972bb6acae3f03d977b70
SHA256

c09878d6fa0c362e352b32964e00f14d0912726452838de9ee5263e75bf345e4
SHA512

779cb60349b3e19b15e70c94455094151ffa27476c049d68577f7fccb04b4dc7e3a45ef8b06949dc0af439810f73bc88449802171d0fef390b2eef88d5ae256a
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYltKZR:hDXWipuE+K3/SSHgxmltKZR

Score

7^/10

Malware Config

Targets

- Target
  
  d0f7b48359826b896410fe760585236b_JaffaCakes118
- Size
  
  16KB
- MD5
  
  d0f7b48359826b896410fe760585236b
- SHA1
  
  74c96d508e81dd85a82972bb6acae3f03d977b70
- SHA256
  
  c09878d6fa0c362e352b32964e00f14d0912726452838de9ee5263e75bf345e4
- SHA512
  
  779cb60349b3e19b15e70c94455094151ffa27476c049d68577f7fccb04b4dc7e3a45ef8b06949dc0af439810f73bc88449802171d0fef390b2eef88d5ae256a
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYltKZR:hDXWipuE+K3/SSHgxmltKZR
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2