69c56160e99e3de8cc10e5b0299e8f84a1e7b5c73132c620417fafd108bdc535 | Triage

Sharing

General

Target

0a0d3a5369b3b80b8a05000c572e0d18_JaffaCakes118
Size

21KB
Sample

240430-sspf2abg54
MD5

0a0d3a5369b3b80b8a05000c572e0d18
SHA1

73ddc90434ef41943f7d3e489fd6934d06c9edca
SHA256

69c56160e99e3de8cc10e5b0299e8f84a1e7b5c73132c620417fafd108bdc535
SHA512

801dac0a6a4808d51a5208bff5868f743046b75f30dfd7d990ecc50073e85ceb2017f25bb48a5513fee377e62528eded3650837ea4339b93b64bc6e5eaaa4d41
SSDEEP

96:/U43NciA0ARfHPHh4aVSTmt/drLwqFAFk86O6xCpLJ3SyQU4PbNUYYEm3XG:MJgARPnITsZppbTx8rENUYYL3W

Score

7^/10

Malware Config

Targets

- Target
  
  0a0d3a5369b3b80b8a05000c572e0d18_JaffaCakes118
- Size
  
  21KB
- MD5
  
  0a0d3a5369b3b80b8a05000c572e0d18
- SHA1
  
  73ddc90434ef41943f7d3e489fd6934d06c9edca
- SHA256
  
  69c56160e99e3de8cc10e5b0299e8f84a1e7b5c73132c620417fafd108bdc535
- SHA512
  
  801dac0a6a4808d51a5208bff5868f743046b75f30dfd7d990ecc50073e85ceb2017f25bb48a5513fee377e62528eded3650837ea4339b93b64bc6e5eaaa4d41
- SSDEEP
  
  96:/U43NciA0ARfHPHh4aVSTmt/drLwqFAFk86O6xCpLJ3SyQU4PbNUYYEm3XG:MJgARPnITsZppbTx8rENUYYL3W
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2