e9bcdd20918f977764f5bc5b18e3b44830db72a1ee20f823e71244a08890f557 | Triage

Sharing

General

Target

e82dc44873355cc5e14ca4fc3a2f7549_JaffaCakes118
Size

20KB
Sample

240408-xndaesgh92
MD5

e82dc44873355cc5e14ca4fc3a2f7549
SHA1

7ffa882401969381208b70d52beca4bac542b575
SHA256

e9bcdd20918f977764f5bc5b18e3b44830db72a1ee20f823e71244a08890f557
SHA512

e5cc0e64cb5304b5b2c2f2b0458f885902120a7cb3fd8bd7414690053f8ab7592063ae13d4c86672f59a211a1c00a557622a4b47c9b9ac5280bd47ff59d34038
SSDEEP

384:t8sippSBahKmiv94WpSWmpknhu1jKnv7D3y:/o0BahKmUJSmu1jKvC

Score

7^/10

Malware Config

Targets

- Target
  
  e82dc44873355cc5e14ca4fc3a2f7549_JaffaCakes118
- Size
  
  20KB
- MD5
  
  e82dc44873355cc5e14ca4fc3a2f7549
- SHA1
  
  7ffa882401969381208b70d52beca4bac542b575
- SHA256
  
  e9bcdd20918f977764f5bc5b18e3b44830db72a1ee20f823e71244a08890f557
- SHA512
  
  e5cc0e64cb5304b5b2c2f2b0458f885902120a7cb3fd8bd7414690053f8ab7592063ae13d4c86672f59a211a1c00a557622a4b47c9b9ac5280bd47ff59d34038
- SSDEEP
  
  384:t8sippSBahKmiv94WpSWmpknhu1jKnv7D3y:/o0BahKmUJSmu1jKvC
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2