a84965c7fbcdab3dbafcb35aa216e564e535bbab5b0bf7ed6fa5835da631f9f7 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e0df47182cc49c0d28640c788d4a9c60_JaffaCakes118
Size

15KB
Sample

240406-k38cwseh6v
MD5

e0df47182cc49c0d28640c788d4a9c60
SHA1

128a7cd9e1c03790103cebaba30ce5e2f434f075
SHA256

a84965c7fbcdab3dbafcb35aa216e564e535bbab5b0bf7ed6fa5835da631f9f7
SHA512

5c1f8a2ac5819df68527e6a233022e5704a1fd3887c602662554063994eb560b19d6cfbefbc400be0f247186c4241fa811a1ee0ab0e67443c01c91c435f724b8
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJEvzQ:hDXWipuE+K3/SSHgx4zQ

Score

7^/10

Malware Config

Targets

- Target
  
  e0df47182cc49c0d28640c788d4a9c60_JaffaCakes118
- Size
  
  15KB
- MD5
  
  e0df47182cc49c0d28640c788d4a9c60
- SHA1
  
  128a7cd9e1c03790103cebaba30ce5e2f434f075
- SHA256
  
  a84965c7fbcdab3dbafcb35aa216e564e535bbab5b0bf7ed6fa5835da631f9f7
- SHA512
  
  5c1f8a2ac5819df68527e6a233022e5704a1fd3887c602662554063994eb560b19d6cfbefbc400be0f247186c4241fa811a1ee0ab0e67443c01c91c435f724b8
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJEvzQ:hDXWipuE+K3/SSHgx4zQ
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2