b65de98290b9a538d428edc0fd52515e1231401046f39128e8754f8d2f13305f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

038bf0992c0560f5eb30d2b60031f4ad_JaffaCakes118
Size

317KB
Sample

240427-y4vebafe87
MD5

038bf0992c0560f5eb30d2b60031f4ad
SHA1

d2c5705d2ebde332bd69d3782da427f8ebbbc277
SHA256

b65de98290b9a538d428edc0fd52515e1231401046f39128e8754f8d2f13305f
SHA512

3efe058e38f05fbebbeb59219be38d42ac3ca6e2581fb46d9d1285c80f009c81465aae64bc74ee101f91b5f7c555d294f6196c6c396ad39c7cc369b1952568ef
SSDEEP

6144:H2yYM47toLbii5bkgVuN+xSKV7Wkrsf7LsgEyd+xhsB3anw73t:H2yYM47qXikbkgaISKVAfd+h1nw7d

Score

7^/10

Malware Config

Targets

- Target
  
  038bf0992c0560f5eb30d2b60031f4ad_JaffaCakes118
- Size
  
  317KB
- MD5
  
  038bf0992c0560f5eb30d2b60031f4ad
- SHA1
  
  d2c5705d2ebde332bd69d3782da427f8ebbbc277
- SHA256
  
  b65de98290b9a538d428edc0fd52515e1231401046f39128e8754f8d2f13305f
- SHA512
  
  3efe058e38f05fbebbeb59219be38d42ac3ca6e2581fb46d9d1285c80f009c81465aae64bc74ee101f91b5f7c555d294f6196c6c396ad39c7cc369b1952568ef
- SSDEEP
  
  6144:H2yYM47toLbii5bkgVuN+xSKV7Wkrsf7LsgEyd+xhsB3anw73t:H2yYM47qXikbkgaISKVAfd+h1nw7d
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2