e2201e28ccda76d68bdbb39c80bf1479cf0ed95d04ee14accc607e474e958191 | Triage

Sharing

General

Target

d9ff59836649af5710c2746eda8893b9_JaffaCakes118
Size

14KB
Sample

240405-vxajsaad26
MD5

d9ff59836649af5710c2746eda8893b9
SHA1

10af06349e619e77fcc51f23f5c21e3236ceaee7
SHA256

e2201e28ccda76d68bdbb39c80bf1479cf0ed95d04ee14accc607e474e958191
SHA512

aa336adb61e84067ce838f3005a8d5fcd2778ab7562c4b9a4879e00a8141bbda9a353206f4bde436f34783e967c317891aaf6b87d0fed55b16b519f97b3ba191
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlU:hDXWipuE+K3/SSHgxmlU

Score

7^/10

Malware Config

Targets

- Target
  
  d9ff59836649af5710c2746eda8893b9_JaffaCakes118
- Size
  
  14KB
- MD5
  
  d9ff59836649af5710c2746eda8893b9
- SHA1
  
  10af06349e619e77fcc51f23f5c21e3236ceaee7
- SHA256
  
  e2201e28ccda76d68bdbb39c80bf1479cf0ed95d04ee14accc607e474e958191
- SHA512
  
  aa336adb61e84067ce838f3005a8d5fcd2778ab7562c4b9a4879e00a8141bbda9a353206f4bde436f34783e967c317891aaf6b87d0fed55b16b519f97b3ba191
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlU:hDXWipuE+K3/SSHgxmlU
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2