1a5370a55acf6877d9f3ce635982256ed9c92356966dc53fcc72c7697fd28aad | Triage

Sharing

General

Target

f8fae6346f86f1f2a9034a2077f98765_JaffaCakes118
Size

16KB
Sample

240418-3dendsba4v
MD5

f8fae6346f86f1f2a9034a2077f98765
SHA1

3361ad68095212097d88767e28c803440dcff6ca
SHA256

1a5370a55acf6877d9f3ce635982256ed9c92356966dc53fcc72c7697fd28aad
SHA512

b4f6fdcd268e8e0034dbb943c34355ee422af9d7274c34b633cd2924aa4f67d4ae34d248cb20fe6e485b94df8a4492b926cc51543014a36e9e489e702576d572
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZlHfqr:hDXWipuE+K3/SSHgx3l/2

Score

7^/10

Malware Config

Targets

- Target
  
  f8fae6346f86f1f2a9034a2077f98765_JaffaCakes118
- Size
  
  16KB
- MD5
  
  f8fae6346f86f1f2a9034a2077f98765
- SHA1
  
  3361ad68095212097d88767e28c803440dcff6ca
- SHA256
  
  1a5370a55acf6877d9f3ce635982256ed9c92356966dc53fcc72c7697fd28aad
- SHA512
  
  b4f6fdcd268e8e0034dbb943c34355ee422af9d7274c34b633cd2924aa4f67d4ae34d248cb20fe6e485b94df8a4492b926cc51543014a36e9e489e702576d572
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZlHfqr:hDXWipuE+K3/SSHgx3l/2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2