eec7ae872cd9eef16d244662f1e7707b813815ca5ac998d67fd9e7e9ee18cddd | Triage

Sharing

General

Target

f172b297116042c0d34ad2a92df81bb4_JaffaCakes118
Size

15KB
Sample

240415-thjngacf8t
MD5

f172b297116042c0d34ad2a92df81bb4
SHA1

bc1e7af495aa0e059cd7683cdea07e868795520e
SHA256

eec7ae872cd9eef16d244662f1e7707b813815ca5ac998d67fd9e7e9ee18cddd
SHA512

d565d77daf5c22f14ac41d03d524d1f8cabf9e76c4a2c17ca19c5ad9a095ffeb82e9e7f5ef1448ecdbe6fea3d1ee8b56a34262eadd9588b088941894e6830628
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYLNBq:hDXWipuE+K3/SSHgxmLzq

Score

7^/10

Malware Config

Targets

- Target
  
  f172b297116042c0d34ad2a92df81bb4_JaffaCakes118
- Size
  
  15KB
- MD5
  
  f172b297116042c0d34ad2a92df81bb4
- SHA1
  
  bc1e7af495aa0e059cd7683cdea07e868795520e
- SHA256
  
  eec7ae872cd9eef16d244662f1e7707b813815ca5ac998d67fd9e7e9ee18cddd
- SHA512
  
  d565d77daf5c22f14ac41d03d524d1f8cabf9e76c4a2c17ca19c5ad9a095ffeb82e9e7f5ef1448ecdbe6fea3d1ee8b56a34262eadd9588b088941894e6830628
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYLNBq:hDXWipuE+K3/SSHgxmLzq
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2