4783556e306a33d0f2b82a4b252d64947c84af40d8219cc9c24892552f6f4d8c | Triage

Sharing

General

Target

f7c7f796efa9d426820550fe7436fdac_JaffaCakes118
Size

3.5MB
Sample

240418-l9dyasaa86
MD5

f7c7f796efa9d426820550fe7436fdac
SHA1

4a3902551497203b2f335cc0375c3a4dd6c4fed0
SHA256

4783556e306a33d0f2b82a4b252d64947c84af40d8219cc9c24892552f6f4d8c
SHA512

f7df1cf6067aab2818f6b2739f11707ec03141bbc1b87a62c9e1c34f91af00620f63c174388736557d83135ce1b4f42593a590622112928383c0b88244bffcfd
SSDEEP

98304:I/qAVyk9q/MtommYK9zKAc0MymmYK9zKAc0M:xswxmmYK9+AcdymmYK9+Acd

Score

7^/10

Malware Config

Targets

- Target
  
  f7c7f796efa9d426820550fe7436fdac_JaffaCakes118
- Size
  
  3.5MB
- MD5
  
  f7c7f796efa9d426820550fe7436fdac
- SHA1
  
  4a3902551497203b2f335cc0375c3a4dd6c4fed0
- SHA256
  
  4783556e306a33d0f2b82a4b252d64947c84af40d8219cc9c24892552f6f4d8c
- SHA512
  
  f7df1cf6067aab2818f6b2739f11707ec03141bbc1b87a62c9e1c34f91af00620f63c174388736557d83135ce1b4f42593a590622112928383c0b88244bffcfd
- SSDEEP
  
  98304:I/qAVyk9q/MtommYK9zKAc0MymmYK9zKAc0M:xswxmmYK9+AcdymmYK9+Acd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2