70dff56b1e31af36acbf63c01b8c66625874f8526bd55bb285c618588731411c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

de6115c50092f22c6e94186684e4d0f2_JaffaCakes118
Size

14KB
Sample

240406-hwrepadb5z
MD5

de6115c50092f22c6e94186684e4d0f2
SHA1

63a97f3b59f3d748ac226d0d55c90ae17300a72e
SHA256

70dff56b1e31af36acbf63c01b8c66625874f8526bd55bb285c618588731411c
SHA512

c907067d8a7413e08dce51d3bb8542ab61836172bacffecc0cbdc7c3c5d65071470362d3f047de8abb4aad168d928d9a78ea37e9cf9d6a0881fcbef8d8bfac52
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZXdHd:hDXWipuE+K3/SSHgx3NHd

Score

7^/10

Malware Config

Targets

- Target
  
  de6115c50092f22c6e94186684e4d0f2_JaffaCakes118
- Size
  
  14KB
- MD5
  
  de6115c50092f22c6e94186684e4d0f2
- SHA1
  
  63a97f3b59f3d748ac226d0d55c90ae17300a72e
- SHA256
  
  70dff56b1e31af36acbf63c01b8c66625874f8526bd55bb285c618588731411c
- SHA512
  
  c907067d8a7413e08dce51d3bb8542ab61836172bacffecc0cbdc7c3c5d65071470362d3f047de8abb4aad168d928d9a78ea37e9cf9d6a0881fcbef8d8bfac52
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZXdHd:hDXWipuE+K3/SSHgx3NHd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2