ade850aee028fb296ae3327224cf7fe36c54c5ade9e0c341d4bb4bd49b7ddc3e | Triage

Sharing

General

Target

e154affc048bd0bbb3b15680d9e93201_JaffaCakes118
Size

15KB
Sample

240406-lfeyhafh73
MD5

e154affc048bd0bbb3b15680d9e93201
SHA1

09613df556f4e1bd2dba542ea3643babe429fa04
SHA256

ade850aee028fb296ae3327224cf7fe36c54c5ade9e0c341d4bb4bd49b7ddc3e
SHA512

c11f324f797a9702eec4a2a290b09e2529d04ee84b6408f27bf800dd92d396d8f09fedf3d86bc429585e52f17696050994aab84291323246d455124df6b28071
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYyh6V:hDXWipuE+K3/SSHgxmyh6V

Score

7^/10

Malware Config

Targets

- Target
  
  e154affc048bd0bbb3b15680d9e93201_JaffaCakes118
- Size
  
  15KB
- MD5
  
  e154affc048bd0bbb3b15680d9e93201
- SHA1
  
  09613df556f4e1bd2dba542ea3643babe429fa04
- SHA256
  
  ade850aee028fb296ae3327224cf7fe36c54c5ade9e0c341d4bb4bd49b7ddc3e
- SHA512
  
  c11f324f797a9702eec4a2a290b09e2529d04ee84b6408f27bf800dd92d396d8f09fedf3d86bc429585e52f17696050994aab84291323246d455124df6b28071
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYyh6V:hDXWipuE+K3/SSHgxmyh6V
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2