fdfb833266a06082c761321a96c793fd782be20fddc2176a607a0d9930739e9b | Triage

Sharing

General

Target

fdd7f8a3f284045f387d489514b93041_JaffaCakes118
Size

2.1MB
Sample

240420-2wkfxscf61
MD5

fdd7f8a3f284045f387d489514b93041
SHA1

7fe4ffbf2ee6dbffb96a4f2e23a7ae80bc8af8d5
SHA256

fdfb833266a06082c761321a96c793fd782be20fddc2176a607a0d9930739e9b
SHA512

2af46eea70f6932e8490cc766727802426e11221ef6f7c5dde7930708d25201c10aba39cf4bdfb38b5d912d8acd8f94f761b653f107b2de76de05e1847b7fad4
SSDEEP

49152:AtKOxIdYu3UrzMckVVMR5aECn8UfNCpwoM6e5BD9cHTkh75al7zUIg4KoI:AFIyzMcGY5aECn8RpwoM6SZKzkh7oznM

Score

7^/10

Malware Config

Targets

- Target
  
  fdd7f8a3f284045f387d489514b93041_JaffaCakes118
- Size
  
  2.1MB
- MD5
  
  fdd7f8a3f284045f387d489514b93041
- SHA1
  
  7fe4ffbf2ee6dbffb96a4f2e23a7ae80bc8af8d5
- SHA256
  
  fdfb833266a06082c761321a96c793fd782be20fddc2176a607a0d9930739e9b
- SHA512
  
  2af46eea70f6932e8490cc766727802426e11221ef6f7c5dde7930708d25201c10aba39cf4bdfb38b5d912d8acd8f94f761b653f107b2de76de05e1847b7fad4
- SSDEEP
  
  49152:AtKOxIdYu3UrzMckVVMR5aECn8UfNCpwoM6e5BD9cHTkh75al7zUIg4KoI:AFIyzMcGY5aECn8RpwoM6SZKzkh7oznM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2