beaaf96174cbedaa95f7213772f883ea44d9c59139318710188809a0457702a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fdcc2711367fdd2b295de12d5af30cc8_JaffaCakes118
Size

384KB
Sample

240420-2elmnacb7x
MD5

fdcc2711367fdd2b295de12d5af30cc8
SHA1

77e00d7dc67adfe0a2ed5c1c129aa6fbecee1af9
SHA256

beaaf96174cbedaa95f7213772f883ea44d9c59139318710188809a0457702a9
SHA512

7cc67a89c64f3a85a2cc0144b31e03628da2854a089264c906beffbb2460aa1a8b95bd476453238ef4711ea085e6eeddb71fe75c698b6f3cbaca2612df9ecf9a
SSDEEP

6144:ZtW9D0gx72Bbdd+AblT+lJYXwOD0bDDmQOGWfqbg9t/aOXLq/HCrz+IfzBIB:iJ0UyJBT+lyXwODUDDRnKmGXeCfzBIB

Score

7^/10

Malware Config

Targets

- Target
  
  fdcc2711367fdd2b295de12d5af30cc8_JaffaCakes118
- Size
  
  384KB
- MD5
  
  fdcc2711367fdd2b295de12d5af30cc8
- SHA1
  
  77e00d7dc67adfe0a2ed5c1c129aa6fbecee1af9
- SHA256
  
  beaaf96174cbedaa95f7213772f883ea44d9c59139318710188809a0457702a9
- SHA512
  
  7cc67a89c64f3a85a2cc0144b31e03628da2854a089264c906beffbb2460aa1a8b95bd476453238ef4711ea085e6eeddb71fe75c698b6f3cbaca2612df9ecf9a
- SSDEEP
  
  6144:ZtW9D0gx72Bbdd+AblT+lJYXwOD0bDDmQOGWfqbg9t/aOXLq/HCrz+IfzBIB:iJ0UyJBT+lyXwODUDDRnKmGXeCfzBIB
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2