1344738bf87e7ca0bc72773ce2a22150adeaa77dcd064d9eb5cb382989d31e8a | Triage

Sharing

General

Target

d42833235c89a3476e1df437bece3eb4_JaffaCakes118
Size

16KB
Sample

240405-p2r2qsce9v
MD5

d42833235c89a3476e1df437bece3eb4
SHA1

896154f919f93c1ee32fdc8a3ecfb2e88503d78b
SHA256

1344738bf87e7ca0bc72773ce2a22150adeaa77dcd064d9eb5cb382989d31e8a
SHA512

7c74962834398c5344386085115066d8352a1ea206bf8fbc3b81f969ee2a3ae25258c075abe6a7e15e82347dbe1d2544c955b139e18e7ae929ea5e69cd410600
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYTP:hDXWipuE+K3/SSHgxm7

Score

7^/10

Malware Config

Targets

- Target
  
  d42833235c89a3476e1df437bece3eb4_JaffaCakes118
- Size
  
  16KB
- MD5
  
  d42833235c89a3476e1df437bece3eb4
- SHA1
  
  896154f919f93c1ee32fdc8a3ecfb2e88503d78b
- SHA256
  
  1344738bf87e7ca0bc72773ce2a22150adeaa77dcd064d9eb5cb382989d31e8a
- SHA512
  
  7c74962834398c5344386085115066d8352a1ea206bf8fbc3b81f969ee2a3ae25258c075abe6a7e15e82347dbe1d2544c955b139e18e7ae929ea5e69cd410600
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYTP:hDXWipuE+K3/SSHgxm7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2