1d868e84fbc8e712a9c55beb9775a9d71a409caa4fc7098f77b96e3057c37756 | Triage

Sharing

General

Target

694c8212ce7cf8e6fbbbefe183a9ad27_JaffaCakes118
Size

284KB
Sample

240523-bx4yvagh86
MD5

694c8212ce7cf8e6fbbbefe183a9ad27
SHA1

7715da16e471c92c6f09ee1a75968fc4411b2397
SHA256

1d868e84fbc8e712a9c55beb9775a9d71a409caa4fc7098f77b96e3057c37756
SHA512

d11799cad30ec4bf68713976de390e034fb405f88c259f22bc5ab3404a6d3a33084e6fb9124269415f11ba82369c286c6e72f2533385525c6fa32f1ecf479b0a
SSDEEP

6144:pG1Af3k5aL3Lbii5bkgVuN+xSKV7Wkrsf7LsMKceSK:pGaf05a7XikbkgaISKVsVe3

Score

7^/10

Malware Config

Targets

- Target
  
  694c8212ce7cf8e6fbbbefe183a9ad27_JaffaCakes118
- Size
  
  284KB
- MD5
  
  694c8212ce7cf8e6fbbbefe183a9ad27
- SHA1
  
  7715da16e471c92c6f09ee1a75968fc4411b2397
- SHA256
  
  1d868e84fbc8e712a9c55beb9775a9d71a409caa4fc7098f77b96e3057c37756
- SHA512
  
  d11799cad30ec4bf68713976de390e034fb405f88c259f22bc5ab3404a6d3a33084e6fb9124269415f11ba82369c286c6e72f2533385525c6fa32f1ecf479b0a
- SSDEEP
  
  6144:pG1Af3k5aL3Lbii5bkgVuN+xSKV7Wkrsf7LsMKceSK:pGaf05a7XikbkgaISKVsVe3
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2