f7e7a93ce6330b00d14ab3bbc9a12bb7ff30b3ce154ae739c721ad691275741c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f7ad71d9042f3d76e659d220dd34ba98_JaffaCakes118
Size

15KB
Sample

240418-kysrmshh8z
MD5

f7ad71d9042f3d76e659d220dd34ba98
SHA1

d55422b573806836906211e0e62ef013874b3dd5
SHA256

f7e7a93ce6330b00d14ab3bbc9a12bb7ff30b3ce154ae739c721ad691275741c
SHA512

6f40628e7ac1299fa5c513a7fa7c811c928cefd0d554fcd8409f2bf026b617b31b354e1e2d8368c3985c607929c7d2b2eac90f1dc5e98c64d902eb334e730c9b
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYl0rJHPz:hDXWipuE+K3/SSHgxmlOJHb

Score

7^/10

Malware Config

Targets

- Target
  
  f7ad71d9042f3d76e659d220dd34ba98_JaffaCakes118
- Size
  
  15KB
- MD5
  
  f7ad71d9042f3d76e659d220dd34ba98
- SHA1
  
  d55422b573806836906211e0e62ef013874b3dd5
- SHA256
  
  f7e7a93ce6330b00d14ab3bbc9a12bb7ff30b3ce154ae739c721ad691275741c
- SHA512
  
  6f40628e7ac1299fa5c513a7fa7c811c928cefd0d554fcd8409f2bf026b617b31b354e1e2d8368c3985c607929c7d2b2eac90f1dc5e98c64d902eb334e730c9b
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYl0rJHPz:hDXWipuE+K3/SSHgxmlOJHb
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2