ff4f3914f8719f3154850b7a442839e9f50771b0bff0d5db52ba30bb715987ed | Triage

Sharing

General

Target

f159acec73612aa2d6a2c13d3191b8da_JaffaCakes118
Size

14KB
Sample

240415-sja72she35
MD5

f159acec73612aa2d6a2c13d3191b8da
SHA1

a069cea45ba395f30e295f2372fb0e2f1f76cede
SHA256

ff4f3914f8719f3154850b7a442839e9f50771b0bff0d5db52ba30bb715987ed
SHA512

67681c98a17c4aeb731d0e61630bb515886a48adc31038084fa5bb08963fa615fb484f331519bf9b36bff0e4c33e1baad71a0779bfdf5f067745016ab4a82341
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYfQW:hDXWipuE+K3/SSHgxmfp

Score

7^/10

Malware Config

Targets

- Target
  
  f159acec73612aa2d6a2c13d3191b8da_JaffaCakes118
- Size
  
  14KB
- MD5
  
  f159acec73612aa2d6a2c13d3191b8da
- SHA1
  
  a069cea45ba395f30e295f2372fb0e2f1f76cede
- SHA256
  
  ff4f3914f8719f3154850b7a442839e9f50771b0bff0d5db52ba30bb715987ed
- SHA512
  
  67681c98a17c4aeb731d0e61630bb515886a48adc31038084fa5bb08963fa615fb484f331519bf9b36bff0e4c33e1baad71a0779bfdf5f067745016ab4a82341
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYfQW:hDXWipuE+K3/SSHgxmfp
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2