fc3d8b2d3be457943649a6880c6bf11eb280bca9170510c3528d66d856695e8e | Triage

Sharing

General

Target

d4c7ed7a36abf914ebce6cbb4d4eea50_JaffaCakes118
Size

16KB
Sample

240405-qkg1wadb21
MD5

d4c7ed7a36abf914ebce6cbb4d4eea50
SHA1

d5c5bbdd00a1f6e92cc75125695b9079d43cd417
SHA256

fc3d8b2d3be457943649a6880c6bf11eb280bca9170510c3528d66d856695e8e
SHA512

2adce04e99636145ee0f8ea52315bef5ea6afab2625cf6c04d448b063a4b2647c74f900177bcadc2c4961da970b0f6f74b5058f1c28d915523f825d4c12c11ca
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv5Jo:hDXWipuE+K3/SSHgxl5i

Score

7^/10

Malware Config

Targets

- Target
  
  d4c7ed7a36abf914ebce6cbb4d4eea50_JaffaCakes118
- Size
  
  16KB
- MD5
  
  d4c7ed7a36abf914ebce6cbb4d4eea50
- SHA1
  
  d5c5bbdd00a1f6e92cc75125695b9079d43cd417
- SHA256
  
  fc3d8b2d3be457943649a6880c6bf11eb280bca9170510c3528d66d856695e8e
- SHA512
  
  2adce04e99636145ee0f8ea52315bef5ea6afab2625cf6c04d448b063a4b2647c74f900177bcadc2c4961da970b0f6f74b5058f1c28d915523f825d4c12c11ca
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv5Jo:hDXWipuE+K3/SSHgxl5i
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2