503c792e8a1045b0b522e7eb53c4453f89577e54b5dcd591ffc6e8fc9d463d53 | Triage

Sharing

General

Target

d860e55a2586cd2b8659dfa853d4aa03_JaffaCakes118
Size

14KB
Sample

240405-tksn6agd71
MD5

d860e55a2586cd2b8659dfa853d4aa03
SHA1

cc37f985718e35c3c61e395030b1505136c84470
SHA256

503c792e8a1045b0b522e7eb53c4453f89577e54b5dcd591ffc6e8fc9d463d53
SHA512

3a91a791c30ac7d45af1fc9dde0263d787533522381633366b1ae799199b232fbe59584df1a70392083a585c6ec1907d678059532d275bf2a61b8ab1ab3a2846
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhRl5T:hDXWipuE+K3/SSHgxXT

Score

7^/10

Malware Config

Targets

- Target
  
  d860e55a2586cd2b8659dfa853d4aa03_JaffaCakes118
- Size
  
  14KB
- MD5
  
  d860e55a2586cd2b8659dfa853d4aa03
- SHA1
  
  cc37f985718e35c3c61e395030b1505136c84470
- SHA256
  
  503c792e8a1045b0b522e7eb53c4453f89577e54b5dcd591ffc6e8fc9d463d53
- SHA512
  
  3a91a791c30ac7d45af1fc9dde0263d787533522381633366b1ae799199b232fbe59584df1a70392083a585c6ec1907d678059532d275bf2a61b8ab1ab3a2846
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhRl5T:hDXWipuE+K3/SSHgxXT
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2