96f96edc777300ddde92e6bc317987b6e967ae6ff2ba1b10e81c86628f6b6b00 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d3ea567b229530c73468fb35a46162a0_JaffaCakes118
Size

16KB
Sample

240405-pt81aacc4x
MD5

d3ea567b229530c73468fb35a46162a0
SHA1

82ffeb35488feeadd71f820e56dc89405a5280d1
SHA256

96f96edc777300ddde92e6bc317987b6e967ae6ff2ba1b10e81c86628f6b6b00
SHA512

b69a4f214025581cd2e6c929ab1be84b93b6178b1ac17ffbeaa4750f90358ceb6473fa56c580b7c9e3be48706fd9988989bdaa9d306bf267d302d44310ea92c7
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY/w9U4W:hDXWipuE+K3/SSHgxm/KU7

Score

7^/10

Malware Config

Targets

- Target
  
  d3ea567b229530c73468fb35a46162a0_JaffaCakes118
- Size
  
  16KB
- MD5
  
  d3ea567b229530c73468fb35a46162a0
- SHA1
  
  82ffeb35488feeadd71f820e56dc89405a5280d1
- SHA256
  
  96f96edc777300ddde92e6bc317987b6e967ae6ff2ba1b10e81c86628f6b6b00
- SHA512
  
  b69a4f214025581cd2e6c929ab1be84b93b6178b1ac17ffbeaa4750f90358ceb6473fa56c580b7c9e3be48706fd9988989bdaa9d306bf267d302d44310ea92c7
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY/w9U4W:hDXWipuE+K3/SSHgxm/KU7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2