b8608692657e21659220109cbc255b1a96f7588152bd1f5ae4c68ee9779f7a9a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

dd842c5f066b1e5b68e69a8fa6a5ddbc_JaffaCakes118
Size

14KB
Sample

240406-g7l4nsce7y
MD5

dd842c5f066b1e5b68e69a8fa6a5ddbc
SHA1

6a029539ff89b563633263ec81c9cc5c1ab2cebb
SHA256

b8608692657e21659220109cbc255b1a96f7588152bd1f5ae4c68ee9779f7a9a
SHA512

160fc5851022190ea8ee6ca21cbffa8e8a233974a671a3679da06ddd9ad3c06446f9d81a339125c5ebcedacfa61341befc0787e2225efb1f7dc3d71687f6b159
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhgAHo:hDXWipuE+K3/SSHgxSAI

Score

7^/10

Malware Config

Targets

- Target
  
  dd842c5f066b1e5b68e69a8fa6a5ddbc_JaffaCakes118
- Size
  
  14KB
- MD5
  
  dd842c5f066b1e5b68e69a8fa6a5ddbc
- SHA1
  
  6a029539ff89b563633263ec81c9cc5c1ab2cebb
- SHA256
  
  b8608692657e21659220109cbc255b1a96f7588152bd1f5ae4c68ee9779f7a9a
- SHA512
  
  160fc5851022190ea8ee6ca21cbffa8e8a233974a671a3679da06ddd9ad3c06446f9d81a339125c5ebcedacfa61341befc0787e2225efb1f7dc3d71687f6b159
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhgAHo:hDXWipuE+K3/SSHgxSAI
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2