e1c36b5e53f8a229c301b23ac11f4fbdabf60614fe01b4a1598064526be6a0ca | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f11d9105da9913b8a9b31b7a61ac94a7_JaffaCakes118
Size

16KB
Sample

240415-p9xbeshc4v
MD5

f11d9105da9913b8a9b31b7a61ac94a7
SHA1

0f68188f4403144c5fd9a7422ef946bab64af6e3
SHA256

e1c36b5e53f8a229c301b23ac11f4fbdabf60614fe01b4a1598064526be6a0ca
SHA512

fa940bbe59cdeb61cc85632e9a6f9d5f753591919d2185982eeee1d9d4f137280c0b29214c85547db684534e2269873530b58212b8eddffc624f1f59f39f6443
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY0Fl:hDXWipuE+K3/SSHgxm0P

Score

7^/10

Malware Config

Targets

- Target
  
  f11d9105da9913b8a9b31b7a61ac94a7_JaffaCakes118
- Size
  
  16KB
- MD5
  
  f11d9105da9913b8a9b31b7a61ac94a7
- SHA1
  
  0f68188f4403144c5fd9a7422ef946bab64af6e3
- SHA256
  
  e1c36b5e53f8a229c301b23ac11f4fbdabf60614fe01b4a1598064526be6a0ca
- SHA512
  
  fa940bbe59cdeb61cc85632e9a6f9d5f753591919d2185982eeee1d9d4f137280c0b29214c85547db684534e2269873530b58212b8eddffc624f1f59f39f6443
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY0Fl:hDXWipuE+K3/SSHgxm0P
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2