13ca23f58f03b546591e372c75e6c40b43ca08504850205091e87d2c815da7e5 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4357590f28bd4bcd806c79be06cb6b94_JaffaCakes118
Size

359KB
Sample

240514-2ejs3abe9z
MD5

4357590f28bd4bcd806c79be06cb6b94
SHA1

7c9733fe89681f3075ed89dd2c51ce2854595c7f
SHA256

13ca23f58f03b546591e372c75e6c40b43ca08504850205091e87d2c815da7e5
SHA512

05284e7302304bd4b6ebff71351cf96a2f496723c488d74e697656afc7e8352862c8ddcd11097b4cfb5c332d005e91845b20258f994b26db76df0708c33d4f9d
SSDEEP

6144:GsJ/ztsM7fMcLxmH2moRexPxxe+ybgslUZhcgR5AMXMGKugs:LFbMc1mH2NQVu+yt6ZhcgR57Xsun

Score

7^/10

Malware Config

Targets

- Target
  
  4357590f28bd4bcd806c79be06cb6b94_JaffaCakes118
- Size
  
  359KB
- MD5
  
  4357590f28bd4bcd806c79be06cb6b94
- SHA1
  
  7c9733fe89681f3075ed89dd2c51ce2854595c7f
- SHA256
  
  13ca23f58f03b546591e372c75e6c40b43ca08504850205091e87d2c815da7e5
- SHA512
  
  05284e7302304bd4b6ebff71351cf96a2f496723c488d74e697656afc7e8352862c8ddcd11097b4cfb5c332d005e91845b20258f994b26db76df0708c33d4f9d
- SSDEEP
  
  6144:GsJ/ztsM7fMcLxmH2moRexPxxe+ybgslUZhcgR5AMXMGKugs:LFbMc1mH2NQVu+yt6ZhcgR57Xsun
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2