53f18343a53a4d35670199ab1c9b66eadca4788c128d58e3fa6a90f210f1eebd | Triage

Sharing

General

Target

07f1291a3ae58be9d8c696f14eb56af8_JaffaCakes118
Size

10KB
Sample

240429-sev2nadg9x
MD5

07f1291a3ae58be9d8c696f14eb56af8
SHA1

f87983edd771334dcfa2cbb071595142a2568909
SHA256

53f18343a53a4d35670199ab1c9b66eadca4788c128d58e3fa6a90f210f1eebd
SHA512

bdf5ba1429cdef0c5534e8fb76dda4a69f7cb0514e17e6841f2674fb03ed0cee817c186f19c28df2e9e63c587600d88eb08f44c83bfdca266be6b066f4cb6271
SSDEEP

192:ibrETxL4X4f0y4PJuCIa0K8ocRbHzbaAU/uCdCIP:iXET14X4f0y4ER1ocRbvaAUu2P

Score

7^/10

Malware Config

Targets

- Target
  
  07f1291a3ae58be9d8c696f14eb56af8_JaffaCakes118
- Size
  
  10KB
- MD5
  
  07f1291a3ae58be9d8c696f14eb56af8
- SHA1
  
  f87983edd771334dcfa2cbb071595142a2568909
- SHA256
  
  53f18343a53a4d35670199ab1c9b66eadca4788c128d58e3fa6a90f210f1eebd
- SHA512
  
  bdf5ba1429cdef0c5534e8fb76dda4a69f7cb0514e17e6841f2674fb03ed0cee817c186f19c28df2e9e63c587600d88eb08f44c83bfdca266be6b066f4cb6271
- SSDEEP
  
  192:ibrETxL4X4f0y4PJuCIa0K8ocRbHzbaAU/uCdCIP:iXET14X4f0y4ER1ocRbvaAUu2P
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2