b0386b9ea85afb9cdf6403655cc5d59747f68adc5b9d83434e8d4f596dcea71c | Triage

Sharing

General

Target

f6e7ee42df2d522550d0a7037aec72fb_JaffaCakes118
Size

14KB
Sample

240418-atedcace49
MD5

f6e7ee42df2d522550d0a7037aec72fb
SHA1

c66912f3ce0ef14e3f58373308e6f3c34d21b241
SHA256

b0386b9ea85afb9cdf6403655cc5d59747f68adc5b9d83434e8d4f596dcea71c
SHA512

8784a31a89427ed78b31776792c002d05fc09fdc2006ecb5b0759e92618180274ab0e2c11aefeed92dcae81bfe650862f71103cd1a1acd756688c9d9cfc8193d
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv5PAv:hDXWipuE+K3/SSHgxl5y

Score

7^/10

Malware Config

Targets

- Target
  
  f6e7ee42df2d522550d0a7037aec72fb_JaffaCakes118
- Size
  
  14KB
- MD5
  
  f6e7ee42df2d522550d0a7037aec72fb
- SHA1
  
  c66912f3ce0ef14e3f58373308e6f3c34d21b241
- SHA256
  
  b0386b9ea85afb9cdf6403655cc5d59747f68adc5b9d83434e8d4f596dcea71c
- SHA512
  
  8784a31a89427ed78b31776792c002d05fc09fdc2006ecb5b0759e92618180274ab0e2c11aefeed92dcae81bfe650862f71103cd1a1acd756688c9d9cfc8193d
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhv5PAv:hDXWipuE+K3/SSHgxl5y
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2