2e0a8921254c9be7fac2693cda38410f1abc9bea8f90480ae99087866b73bda0 | Triage

Sharing

General

Target

e901129687dfff8d5097f27355d04fea_JaffaCakes118
Size

14KB
Sample

240409-cx1f4afd2v
MD5

e901129687dfff8d5097f27355d04fea
SHA1

7ef70f00afa67cf443f9b9ec1339f6a7b42311da
SHA256

2e0a8921254c9be7fac2693cda38410f1abc9bea8f90480ae99087866b73bda0
SHA512

cf4ab70042f5dd409fccd30c71d4700828a5c6b47ad6d97bd83232ac0ffc4b453e7f64b651f8f142af2ea83e32d62c4fc82701ddcb335391a72fb648bd6567db
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZXdHHYX:hDXWipuE+K3/SSHgx3NHHYX

Score

7^/10

Malware Config

Targets

- Target
  
  e901129687dfff8d5097f27355d04fea_JaffaCakes118
- Size
  
  14KB
- MD5
  
  e901129687dfff8d5097f27355d04fea
- SHA1
  
  7ef70f00afa67cf443f9b9ec1339f6a7b42311da
- SHA256
  
  2e0a8921254c9be7fac2693cda38410f1abc9bea8f90480ae99087866b73bda0
- SHA512
  
  cf4ab70042f5dd409fccd30c71d4700828a5c6b47ad6d97bd83232ac0ffc4b453e7f64b651f8f142af2ea83e32d62c4fc82701ddcb335391a72fb648bd6567db
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZXdHHYX:hDXWipuE+K3/SSHgx3NHHYX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2