7cd4d57e5eacfa1098fbea111e1a6aaafdaf7405179f03469475a999b3824568 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e1be675c36a8873311cccb5a18a975bb_JaffaCakes118
Size

16KB
Sample

240406-lr98sagc22
MD5

e1be675c36a8873311cccb5a18a975bb
SHA1

a9c9d9738001d072fd77ef5e295caf8c9fc2e19c
SHA256

7cd4d57e5eacfa1098fbea111e1a6aaafdaf7405179f03469475a999b3824568
SHA512

69f555405985b1a882ef6509d107cd6542133584d83bd9238a2e65cd703b19de97ca333337a5591a4d5743fb00d08ac7dcf3df7d93b73159cbc29db140dcddd7
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhA3gkHS:hDXWipuE+K3/SSHgxhkHS

Score

7^/10

Malware Config

Targets

- Target
  
  e1be675c36a8873311cccb5a18a975bb_JaffaCakes118
- Size
  
  16KB
- MD5
  
  e1be675c36a8873311cccb5a18a975bb
- SHA1
  
  a9c9d9738001d072fd77ef5e295caf8c9fc2e19c
- SHA256
  
  7cd4d57e5eacfa1098fbea111e1a6aaafdaf7405179f03469475a999b3824568
- SHA512
  
  69f555405985b1a882ef6509d107cd6542133584d83bd9238a2e65cd703b19de97ca333337a5591a4d5743fb00d08ac7dcf3df7d93b73159cbc29db140dcddd7
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhA3gkHS:hDXWipuE+K3/SSHgxhkHS
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2