7c8cde93481f17cfbfcbb9436e0b9e49cdeb9dfc5adc4d713853888dfd7137de | Triage

Sharing

General

Target

fcaade57412a2d2a596f8020c9ded9eb_JaffaCakes118
Size

33KB
Sample

240420-nldczafd95
MD5

fcaade57412a2d2a596f8020c9ded9eb
SHA1

501ed4f974b859f0a2e9a7e56a0517c18824a29d
SHA256

7c8cde93481f17cfbfcbb9436e0b9e49cdeb9dfc5adc4d713853888dfd7137de
SHA512

17573889341a557b42488419e8d41689381fd031773a0c5387542825f4d760213c4c8fe206813cefc14b5fa76cfa49b333e0051d6e162c75588bedcdbf93e7e5
SSDEEP

384:Dw5+1h1UYii+lNppElKelRgr8I4GSFdVp8NAbifwpIgX+FW3el7xI:2+1hS7i+lbpElBqMB3+I/qWQ7

Score

7^/10

Malware Config

Targets

- Target
  
  fcaade57412a2d2a596f8020c9ded9eb_JaffaCakes118
- Size
  
  33KB
- MD5
  
  fcaade57412a2d2a596f8020c9ded9eb
- SHA1
  
  501ed4f974b859f0a2e9a7e56a0517c18824a29d
- SHA256
  
  7c8cde93481f17cfbfcbb9436e0b9e49cdeb9dfc5adc4d713853888dfd7137de
- SHA512
  
  17573889341a557b42488419e8d41689381fd031773a0c5387542825f4d760213c4c8fe206813cefc14b5fa76cfa49b333e0051d6e162c75588bedcdbf93e7e5
- SSDEEP
  
  384:Dw5+1h1UYii+lNppElKelRgr8I4GSFdVp8NAbifwpIgX+FW3el7xI:2+1hS7i+lbpElBqMB3+I/qWQ7
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Persistence

Scheduled Task/Job

Privilege Escalation

Scheduled Task/Job

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2