7b3e64f9ed746455192821a9447db2deee992f054b676584922c1b86da387b33 | Triage

Sharing

General

Target

4ca7ac73dfacae3c6f0db5931eff68fb_JaffaCakes118
Size

1.0MB
Sample

240516-xy61gsca57
MD5

4ca7ac73dfacae3c6f0db5931eff68fb
SHA1

9357405c2cbd1fdbb6198fca4e03482f020548d7
SHA256

7b3e64f9ed746455192821a9447db2deee992f054b676584922c1b86da387b33
SHA512

f194dc12da58f74ec6b621a7f783c8e9b626794028fc53aea793cc35ea3a470e01ea3c521e81eb07707d3c064c7becd6a41d4e3f7c5bcc4bbe895eea02e711f2
SSDEEP

24576:d1Er4Mgtw+dpA/nB1fgW12wYkOPo+GZ9jGOE0z7nT9mVZfERa/QY:a4O+d+/HgWo17PzGLywZmERa4Y

Score

7^/10

Malware Config

Targets

- Target
  
  4ca7ac73dfacae3c6f0db5931eff68fb_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  4ca7ac73dfacae3c6f0db5931eff68fb
- SHA1
  
  9357405c2cbd1fdbb6198fca4e03482f020548d7
- SHA256
  
  7b3e64f9ed746455192821a9447db2deee992f054b676584922c1b86da387b33
- SHA512
  
  f194dc12da58f74ec6b621a7f783c8e9b626794028fc53aea793cc35ea3a470e01ea3c521e81eb07707d3c064c7becd6a41d4e3f7c5bcc4bbe895eea02e711f2
- SSDEEP
  
  24576:d1Er4Mgtw+dpA/nB1fgW12wYkOPo+GZ9jGOE0z7nT9mVZfERa/QY:a4O+d+/HgWo17PzGLywZmERa4Y
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2