b2814036212729111aeb8fe9798e171889e8e883e1632d12cd59cda1eeb29f71 | Triage

Sharing

General

Target

7b7ecdfbe873453930ffce5c5b185933_JaffaCakes118
Size

317KB
Sample

240528-dqw1rscf5y
MD5

7b7ecdfbe873453930ffce5c5b185933
SHA1

7fb26aa6bd65177fd67ff6bc12e60457e645bf58
SHA256

b2814036212729111aeb8fe9798e171889e8e883e1632d12cd59cda1eeb29f71
SHA512

0213a7e203ed65233f15c0fb135bdc9579dd416fed2d1d669a5a0976915eddb3eecd25d7609041e11d0518a1ae0eaad09ac000a4456556bf2445dd0c3dc2cb5c
SSDEEP

6144:+0YjywDhq1doBLbii5bkgVuN+xSKV7Wkrsf7LsOSfXVB8KC9bX:+0AywDhwdiXikbkgaISKVJXv8z9D

Score

7^/10

Malware Config

Targets

- Target
  
  7b7ecdfbe873453930ffce5c5b185933_JaffaCakes118
- Size
  
  317KB
- MD5
  
  7b7ecdfbe873453930ffce5c5b185933
- SHA1
  
  7fb26aa6bd65177fd67ff6bc12e60457e645bf58
- SHA256
  
  b2814036212729111aeb8fe9798e171889e8e883e1632d12cd59cda1eeb29f71
- SHA512
  
  0213a7e203ed65233f15c0fb135bdc9579dd416fed2d1d669a5a0976915eddb3eecd25d7609041e11d0518a1ae0eaad09ac000a4456556bf2445dd0c3dc2cb5c
- SSDEEP
  
  6144:+0YjywDhq1doBLbii5bkgVuN+xSKV7Wkrsf7LsOSfXVB8KC9bX:+0AywDhwdiXikbkgaISKVJXv8z9D
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2