4cff5f86297dbd1524537d3afe698eeb372084b403e428fad58d77c48811d03e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f9037fb179517bd37a5b3706c8d1cdca_JaffaCakes118
Size

15KB
Sample

240418-3q3wraac77
MD5

f9037fb179517bd37a5b3706c8d1cdca
SHA1

26ca12fb74577e69b5375d26ac8a9c4cb6a29b51
SHA256

4cff5f86297dbd1524537d3afe698eeb372084b403e428fad58d77c48811d03e
SHA512

58510cb56bf7defbc93aaac6f6fd810345beed9daa6c64d5021fafb3ff44fbab208fd1e4807762c19a3443f165de7015358bb9062accca9880d177ff1290d2ad
SSDEEP

384:U4hPGHFOwDFKHfVru5+OZRtH1Pu6rWRvPwLGJEWyFwwnVY:rhPGH4BtrkxbHVdOHwGJ/mY

Score

7^/10

Malware Config

Targets

- Target
  
  f9037fb179517bd37a5b3706c8d1cdca_JaffaCakes118
- Size
  
  15KB
- MD5
  
  f9037fb179517bd37a5b3706c8d1cdca
- SHA1
  
  26ca12fb74577e69b5375d26ac8a9c4cb6a29b51
- SHA256
  
  4cff5f86297dbd1524537d3afe698eeb372084b403e428fad58d77c48811d03e
- SHA512
  
  58510cb56bf7defbc93aaac6f6fd810345beed9daa6c64d5021fafb3ff44fbab208fd1e4807762c19a3443f165de7015358bb9062accca9880d177ff1290d2ad
- SSDEEP
  
  384:U4hPGHFOwDFKHfVru5+OZRtH1Pu6rWRvPwLGJEWyFwwnVY:rhPGH4BtrkxbHVdOHwGJ/mY
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2