aa2b5dfdbcdc575e456161b37d4290444070217e874b9e66276cfa687f1090cc | Triage

Sharing

General

Target

fa3bb13c3afb72fe3c4ad1f3eec80bc0_JaffaCakes118
Size

14KB
Sample

240419-nzfegsag95
MD5

fa3bb13c3afb72fe3c4ad1f3eec80bc0
SHA1

2a936b3b7742fad42f65c50c2a9202d12bc403b5
SHA256

aa2b5dfdbcdc575e456161b37d4290444070217e874b9e66276cfa687f1090cc
SHA512

71a851b4b4d50d9d1abfb2a23de797a8733bd7be0986e3acc24d707c4c9205fbed7f0b67d9e5b5a589487c0da74e96e96dfd9bfdadc5158fd143be7558a4f355
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5N:hDXWipuE+K3/SSHgxmz

Score

7^/10

Malware Config

Targets

- Target
  
  fa3bb13c3afb72fe3c4ad1f3eec80bc0_JaffaCakes118
- Size
  
  14KB
- MD5
  
  fa3bb13c3afb72fe3c4ad1f3eec80bc0
- SHA1
  
  2a936b3b7742fad42f65c50c2a9202d12bc403b5
- SHA256
  
  aa2b5dfdbcdc575e456161b37d4290444070217e874b9e66276cfa687f1090cc
- SHA512
  
  71a851b4b4d50d9d1abfb2a23de797a8733bd7be0986e3acc24d707c4c9205fbed7f0b67d9e5b5a589487c0da74e96e96dfd9bfdadc5158fd143be7558a4f355
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY5N:hDXWipuE+K3/SSHgxmz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2