4288d0119a0d077d660e198291c1c10dcc0aca682131ba19b27fb15a813616c3 | Triage

Sharing

General

Target

fd4e445c79333ec46f2ce4bb1e730b78_JaffaCakes118
Size

16KB
Sample

240420-wjfdjsee6x
MD5

fd4e445c79333ec46f2ce4bb1e730b78
SHA1

3262f3471dade6d77df6541c39cf8dccdbd2a6bb
SHA256

4288d0119a0d077d660e198291c1c10dcc0aca682131ba19b27fb15a813616c3
SHA512

2626012f5845f13744f9ba76ed98c090b3acd792f3067828ffc3b7a93737e4018a0fbd08014bb49ee316dad249f120ec4afb3d70c368a932945ed03cf28cb175
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYTQBQ:hDXWipuE+K3/SSHgxmn

Score

7^/10

Malware Config

Targets

- Target
  
  fd4e445c79333ec46f2ce4bb1e730b78_JaffaCakes118
- Size
  
  16KB
- MD5
  
  fd4e445c79333ec46f2ce4bb1e730b78
- SHA1
  
  3262f3471dade6d77df6541c39cf8dccdbd2a6bb
- SHA256
  
  4288d0119a0d077d660e198291c1c10dcc0aca682131ba19b27fb15a813616c3
- SHA512
  
  2626012f5845f13744f9ba76ed98c090b3acd792f3067828ffc3b7a93737e4018a0fbd08014bb49ee316dad249f120ec4afb3d70c368a932945ed03cf28cb175
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYTQBQ:hDXWipuE+K3/SSHgxmn
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2