f7bbfb48bbe3a33814e8c4ac0303ce4dfe3a6651281cf466d0ddeecb76848c47 | Triage

Sharing

General

Target

63e599d335b34ab6de97f6b672c42fbe_JaffaCakes118
Size

9.8MB
Sample

240521-tjpacabd3s
MD5

63e599d335b34ab6de97f6b672c42fbe
SHA1

06c9aeb70f355f54854a58564d74facc3b355af9
SHA256

f7bbfb48bbe3a33814e8c4ac0303ce4dfe3a6651281cf466d0ddeecb76848c47
SHA512

ae0fcff93f37bf6937ee19a41c07adcb2f3d1740199dd5bb9500b1d7216907c942dfbf55b0d1bed8cdcc17104f9a7b18e18254d253bed631d09bb5e971284377
SSDEEP

196608:0vbDdha4z0Ho7WLMQEThkSGHBt19GQzyoxG7yV37IlEgpR8pRkd66R42i5Ny36Je:0zDdha4zkoFGBL/rxOy5U8LkDQM36Q

Score

7^/10

Malware Config

Targets

- Target
  
  63e599d335b34ab6de97f6b672c42fbe_JaffaCakes118
- Size
  
  9.8MB
- MD5
  
  63e599d335b34ab6de97f6b672c42fbe
- SHA1
  
  06c9aeb70f355f54854a58564d74facc3b355af9
- SHA256
  
  f7bbfb48bbe3a33814e8c4ac0303ce4dfe3a6651281cf466d0ddeecb76848c47
- SHA512
  
  ae0fcff93f37bf6937ee19a41c07adcb2f3d1740199dd5bb9500b1d7216907c942dfbf55b0d1bed8cdcc17104f9a7b18e18254d253bed631d09bb5e971284377
- SSDEEP
  
  196608:0vbDdha4z0Ho7WLMQEThkSGHBt19GQzyoxG7yV37IlEgpR8pRkd66R42i5Ny36Je:0zDdha4zkoFGBL/rxOy5U8LkDQM36Q
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2