3074a2847bb83183bbfc0cfe21e1068b8136978d6924df2175cfc628e0b23bb0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d42f067b7420097918c73418e59c04aa_JaffaCakes118
Size

14KB
Sample

240405-p3gmdsdb74
MD5

d42f067b7420097918c73418e59c04aa
SHA1

139ad15a61e377ae3937ac0e4454884cb228420a
SHA256

3074a2847bb83183bbfc0cfe21e1068b8136978d6924df2175cfc628e0b23bb0
SHA512

2f96320da8e980f54ea353e2f024b73f706071d99093068641fe3850d6b98c7cf92423299dc24819c70c14dce4b9dbedfe7a1968c973846f687c26f69585c8ec
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYDsp1zY:hDXWipuE+K3/SSHgxmgX0

Score

7^/10

Malware Config

Targets

- Target
  
  d42f067b7420097918c73418e59c04aa_JaffaCakes118
- Size
  
  14KB
- MD5
  
  d42f067b7420097918c73418e59c04aa
- SHA1
  
  139ad15a61e377ae3937ac0e4454884cb228420a
- SHA256
  
  3074a2847bb83183bbfc0cfe21e1068b8136978d6924df2175cfc628e0b23bb0
- SHA512
  
  2f96320da8e980f54ea353e2f024b73f706071d99093068641fe3850d6b98c7cf92423299dc24819c70c14dce4b9dbedfe7a1968c973846f687c26f69585c8ec
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYDsp1zY:hDXWipuE+K3/SSHgxmgX0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2