39092fe8df02c165368ab2deca61bcd76b3b90a496a2b51ce70b06b1efaa0fff | Triage

Sharing

General

Target

5fed32cfd0c775ba7b290f9a6f76feac_JaffaCakes118
Size

317KB
Sample

240520-tbc74sgb52
MD5

5fed32cfd0c775ba7b290f9a6f76feac
SHA1

715bec0a29d0d13cd65a966cceee254e89e72b9b
SHA256

39092fe8df02c165368ab2deca61bcd76b3b90a496a2b51ce70b06b1efaa0fff
SHA512

609aaeaad9f2e582787556ca1a07bb5a2f7d4d5317cdf561c6065cab0af651330396a6ca0f8fbb7c3db77fe29c0cd9d0d73f66fe007a18f92fc898ebe57f34af
SSDEEP

6144:+0YjywDhq1doBLbii5bkgVuN+xSKV7Wkrsf7LsOSfXVB8KC9bh:+0AywDhwdiXikbkgaISKVJXv8z9N

Score

7^/10

Malware Config

Targets

- Target
  
  5fed32cfd0c775ba7b290f9a6f76feac_JaffaCakes118
- Size
  
  317KB
- MD5
  
  5fed32cfd0c775ba7b290f9a6f76feac
- SHA1
  
  715bec0a29d0d13cd65a966cceee254e89e72b9b
- SHA256
  
  39092fe8df02c165368ab2deca61bcd76b3b90a496a2b51ce70b06b1efaa0fff
- SHA512
  
  609aaeaad9f2e582787556ca1a07bb5a2f7d4d5317cdf561c6065cab0af651330396a6ca0f8fbb7c3db77fe29c0cd9d0d73f66fe007a18f92fc898ebe57f34af
- SSDEEP
  
  6144:+0YjywDhq1doBLbii5bkgVuN+xSKV7Wkrsf7LsOSfXVB8KC9bh:+0AywDhwdiXikbkgaISKVJXv8z9N
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2