d02469d459044ac1b11f27ba6052dd3464a73c96313e1513e2d951123ec94541 | Triage

Sharing

General

Target

dfd9a24bc15c97238ce726c079d10e0c_JaffaCakes118
Size

15KB
Sample

240406-j61lsaeb7y
MD5

dfd9a24bc15c97238ce726c079d10e0c
SHA1

419408db9f27d9a071f62a02909167cad4150889
SHA256

d02469d459044ac1b11f27ba6052dd3464a73c96313e1513e2d951123ec94541
SHA512

e2ae7089e42fb177b88ea321bedebef98f6e4fd9301b614b1b0cc45a603acde1db74c25b371bac4f0b4ee5094e3915a33ad4a0ade75cdc3e7ee3b0d5048dac40
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhhQ:hDXWipuE+K3/SSHgxzQ

Score

7^/10

Malware Config

Targets

- Target
  
  dfd9a24bc15c97238ce726c079d10e0c_JaffaCakes118
- Size
  
  15KB
- MD5
  
  dfd9a24bc15c97238ce726c079d10e0c
- SHA1
  
  419408db9f27d9a071f62a02909167cad4150889
- SHA256
  
  d02469d459044ac1b11f27ba6052dd3464a73c96313e1513e2d951123ec94541
- SHA512
  
  e2ae7089e42fb177b88ea321bedebef98f6e4fd9301b614b1b0cc45a603acde1db74c25b371bac4f0b4ee5094e3915a33ad4a0ade75cdc3e7ee3b0d5048dac40
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhhQ:hDXWipuE+K3/SSHgxzQ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2