8ac2111a44cb9300da4a9e0e84ede9b1815d80264638ac765e1539c0966844d4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f275c3e31eae93aed3ee177548762b77_JaffaCakes118
Size

13KB
Sample

240416-cqxfvsgh3x
MD5

f275c3e31eae93aed3ee177548762b77
SHA1

c4b2fefd383004555caed1e2b02ddbb8a47c1c3a
SHA256

8ac2111a44cb9300da4a9e0e84ede9b1815d80264638ac765e1539c0966844d4
SHA512

86f0d34771ebd17660b56d4f2a2fe1f17b961ce4b84d82c7c7246262bca51f42328043af8bd201eb8afa849d46f243ac2ca1f1a8adf3a0dcea545e7bdb5dedd5
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh9p:hDXWipuE+K3/SSHgxHp

Score

7^/10

Malware Config

Targets

- Target
  
  f275c3e31eae93aed3ee177548762b77_JaffaCakes118
- Size
  
  13KB
- MD5
  
  f275c3e31eae93aed3ee177548762b77
- SHA1
  
  c4b2fefd383004555caed1e2b02ddbb8a47c1c3a
- SHA256
  
  8ac2111a44cb9300da4a9e0e84ede9b1815d80264638ac765e1539c0966844d4
- SHA512
  
  86f0d34771ebd17660b56d4f2a2fe1f17b961ce4b84d82c7c7246262bca51f42328043af8bd201eb8afa849d46f243ac2ca1f1a8adf3a0dcea545e7bdb5dedd5
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh9p:hDXWipuE+K3/SSHgxHp
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2