b20f911e26de554f338c2205d857b5a9e19103d65ff029f5b63127a9ef5ccb16 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f14997a6e80ec85e1539f1330e077811_JaffaCakes118
Size

15KB
Sample

240415-rxea7aah7v
MD5

f14997a6e80ec85e1539f1330e077811
SHA1

a4dc96dd041694213defef85ead7d5ce768e738f
SHA256

b20f911e26de554f338c2205d857b5a9e19103d65ff029f5b63127a9ef5ccb16
SHA512

1c256fc27b2926be7282e8b0045d698055286c17c09797a53d34fda8aae830b1a35236fa70d70a7a23706574c3df1dd1eed2e500f282e479d92f57a1390bf6bc
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY8QHuPc:hDXWipuE+K3/SSHgxm8quPc

Score

7^/10

Malware Config

Targets

- Target
  
  f14997a6e80ec85e1539f1330e077811_JaffaCakes118
- Size
  
  15KB
- MD5
  
  f14997a6e80ec85e1539f1330e077811
- SHA1
  
  a4dc96dd041694213defef85ead7d5ce768e738f
- SHA256
  
  b20f911e26de554f338c2205d857b5a9e19103d65ff029f5b63127a9ef5ccb16
- SHA512
  
  1c256fc27b2926be7282e8b0045d698055286c17c09797a53d34fda8aae830b1a35236fa70d70a7a23706574c3df1dd1eed2e500f282e479d92f57a1390bf6bc
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY8QHuPc:hDXWipuE+K3/SSHgxm8quPc
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2