1941c1fcfd4622f93a74744517e563cac18fc26e4db89fa903f109b23c2f7008 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f983575670a65ac03bfd512216a0c1bb_JaffaCakes118
Size

14KB
Sample

240419-e6jaaagh42
MD5

f983575670a65ac03bfd512216a0c1bb
SHA1

8375f7cbb5bcb39706ad4551295c3c713e266e7e
SHA256

1941c1fcfd4622f93a74744517e563cac18fc26e4db89fa903f109b23c2f7008
SHA512

6fbd0c5086fe6342dadddedea619895cb2e22a5bc531fe992c46b2f1b7d865684946a2a56637f2162b2c3f4d6f545ff4c10694f1ea78d09afd621af2c50f3368
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYJBO:hDXWipuE+K3/SSHgxmbO

Score

7^/10

Malware Config

Targets

- Target
  
  f983575670a65ac03bfd512216a0c1bb_JaffaCakes118
- Size
  
  14KB
- MD5
  
  f983575670a65ac03bfd512216a0c1bb
- SHA1
  
  8375f7cbb5bcb39706ad4551295c3c713e266e7e
- SHA256
  
  1941c1fcfd4622f93a74744517e563cac18fc26e4db89fa903f109b23c2f7008
- SHA512
  
  6fbd0c5086fe6342dadddedea619895cb2e22a5bc531fe992c46b2f1b7d865684946a2a56637f2162b2c3f4d6f545ff4c10694f1ea78d09afd621af2c50f3368
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYJBO:hDXWipuE+K3/SSHgxmbO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2