bbf7b0f1c274a603c219c479ad4c87d052190f4a242b6a94680d0cdfe702de29 | Triage

Sharing

General

Target

f749dd7cb924122d149835673b02450e_JaffaCakes118
Size

26KB
Sample

240418-fbffksbd34
MD5

f749dd7cb924122d149835673b02450e
SHA1

05ef81ef2656b6e2b1d9589bd258fd493a7dcd39
SHA256

bbf7b0f1c274a603c219c479ad4c87d052190f4a242b6a94680d0cdfe702de29
SHA512

292e044f385483eedff1a1c229706cfe8cc819dddd8815150066efbd90abd832ec5b29312d7ca8cfe23549f255973fdf0db57f5a6cffa7f67db966d23f2c7fe1
SSDEEP

384:wUu0rr6o0osYpcwqcpyxhVTgfLIuQz2LEm6Yj239y:hpr2604cxvM0bC23

Score

7^/10

Malware Config

Targets

- Target
  
  f749dd7cb924122d149835673b02450e_JaffaCakes118
- Size
  
  26KB
- MD5
  
  f749dd7cb924122d149835673b02450e
- SHA1
  
  05ef81ef2656b6e2b1d9589bd258fd493a7dcd39
- SHA256
  
  bbf7b0f1c274a603c219c479ad4c87d052190f4a242b6a94680d0cdfe702de29
- SHA512
  
  292e044f385483eedff1a1c229706cfe8cc819dddd8815150066efbd90abd832ec5b29312d7ca8cfe23549f255973fdf0db57f5a6cffa7f67db966d23f2c7fe1
- SSDEEP
  
  384:wUu0rr6o0osYpcwqcpyxhVTgfLIuQz2LEm6Yj239y:hpr2604cxvM0bC23
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2