6a245314ab024fae26c8c42d5e5fe00dc8b7981866ea15712ad4c29db5f1418e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f46e595598eb96ba64eba8b1f5ca1186_JaffaCakes118
Size

16KB
Sample

240416-1z1fwafd5z
MD5

f46e595598eb96ba64eba8b1f5ca1186
SHA1

dff2d8760c8d1f2e7d301540631eed0c63c9ce35
SHA256

6a245314ab024fae26c8c42d5e5fe00dc8b7981866ea15712ad4c29db5f1418e
SHA512

5d04c666926fc91aff588cce5d751212b32eb343598c6f5cab44f9ef1c8551f7a54f6bd838b632f863cff8e92490cf8a06b2283e3407253aecb0ffc35e38bab7
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYvctz:hDXWipuE+K3/SSHgxmktz

Score

7^/10

Malware Config

Targets

- Target
  
  f46e595598eb96ba64eba8b1f5ca1186_JaffaCakes118
- Size
  
  16KB
- MD5
  
  f46e595598eb96ba64eba8b1f5ca1186
- SHA1
  
  dff2d8760c8d1f2e7d301540631eed0c63c9ce35
- SHA256
  
  6a245314ab024fae26c8c42d5e5fe00dc8b7981866ea15712ad4c29db5f1418e
- SHA512
  
  5d04c666926fc91aff588cce5d751212b32eb343598c6f5cab44f9ef1c8551f7a54f6bd838b632f863cff8e92490cf8a06b2283e3407253aecb0ffc35e38bab7
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYvctz:hDXWipuE+K3/SSHgxmktz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2