e2756b61810fe92bd595f2cf3026d995f546fba651dcf033cb95cb33c7f6883a | Triage

Sharing

General

Target

113bced402c29231367d17be7f01784f_JaffaCakes118
Size

9KB
Sample

240504-ct9wcsdh32
MD5

113bced402c29231367d17be7f01784f
SHA1

602dab0768b0c33c3021e9a5e1b3442efb9665b8
SHA256

e2756b61810fe92bd595f2cf3026d995f546fba651dcf033cb95cb33c7f6883a
SHA512

e16f44f82ca9f25544786a64be774bc941c7c7e7e067af891935154ecfc52caa5c3673952dae6fda2dd895b00ac1538f5c0f2148356d98e9c72b706d537e6293
SSDEEP

192:Hym8TSrQWRIc+v2StX4Q/ZpzM79EWQOie:HxEsQWRIc8ttXd2GWQbe

Score

7^/10

Malware Config

Targets

- Target
  
  113bced402c29231367d17be7f01784f_JaffaCakes118
- Size
  
  9KB
- MD5
  
  113bced402c29231367d17be7f01784f
- SHA1
  
  602dab0768b0c33c3021e9a5e1b3442efb9665b8
- SHA256
  
  e2756b61810fe92bd595f2cf3026d995f546fba651dcf033cb95cb33c7f6883a
- SHA512
  
  e16f44f82ca9f25544786a64be774bc941c7c7e7e067af891935154ecfc52caa5c3673952dae6fda2dd895b00ac1538f5c0f2148356d98e9c72b706d537e6293
- SSDEEP
  
  192:Hym8TSrQWRIc+v2StX4Q/ZpzM79EWQOie:HxEsQWRIc8ttXd2GWQbe
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2