76ec0140da8747f078839226d845e16d5201b629a9d72cbc82c5eb86a09d56f4 | Triage

Sharing

General

Target

e206179e9810a4746bc285082645cd2c_JaffaCakes118
Size

33KB
Sample

240406-l2ff6agd77
MD5

e206179e9810a4746bc285082645cd2c
SHA1

baa38bad4ca687b482873fcf3b68bb991e17dfd8
SHA256

76ec0140da8747f078839226d845e16d5201b629a9d72cbc82c5eb86a09d56f4
SHA512

aa91a7ce7845f9f6a566cd2c4d8667c49ad74cde07940c5f28f731e89d605dffd2a9aca89795d08ffb0a9fc41e2579673038a5d648b4eab27530e500b5876edf
SSDEEP

192:5L1d1uxxFqrN1lPqn7x05Opd5hcqdQgg4NS7mIBniV9M4uPIulkgBQxPkX:5L1d8xSrN1g7xKudNdtADaM4E7FBok

Score

7^/10

Malware Config

Targets

- Target
  
  e206179e9810a4746bc285082645cd2c_JaffaCakes118
- Size
  
  33KB
- MD5
  
  e206179e9810a4746bc285082645cd2c
- SHA1
  
  baa38bad4ca687b482873fcf3b68bb991e17dfd8
- SHA256
  
  76ec0140da8747f078839226d845e16d5201b629a9d72cbc82c5eb86a09d56f4
- SHA512
  
  aa91a7ce7845f9f6a566cd2c4d8667c49ad74cde07940c5f28f731e89d605dffd2a9aca89795d08ffb0a9fc41e2579673038a5d648b4eab27530e500b5876edf
- SSDEEP
  
  192:5L1d1uxxFqrN1lPqn7x05Opd5hcqdQgg4NS7mIBniV9M4uPIulkgBQxPkX:5L1d8xSrN1g7xKudNdtADaM4E7FBok
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2