184866a48db2531dfcce10c98fad84235e1364601edc50f20c64a1163cc5fd1e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a4b46a2d2668ca96d4bd05d3f6caa702_JaffaCakes118
Size

370KB
Sample

240613-krf49s1hjg
MD5

a4b46a2d2668ca96d4bd05d3f6caa702
SHA1

55823d20faa81c636e94c31bb4b2cbacac1b87f5
SHA256

184866a48db2531dfcce10c98fad84235e1364601edc50f20c64a1163cc5fd1e
SHA512

02c06d2353f660b4ca2c12bccc16d2a0ce0639cb92638b09dc0b0dcd9ab098a87959054fad0652d232ff197292f331943cb514f92c095ab5770db3e7b3000713
SSDEEP

6144:40mlfM4a0g33ofNpLt23hUsHBYEnjBU9VaoeYQrz3462TAmd9exwxLQrrX7UZgKx:6Cd0g3YvE3vGEijQvojd97LuX7UZgK1v

Score

7^/10

Malware Config

Targets

- Target
  
  a4b46a2d2668ca96d4bd05d3f6caa702_JaffaCakes118
- Size
  
  370KB
- MD5
  
  a4b46a2d2668ca96d4bd05d3f6caa702
- SHA1
  
  55823d20faa81c636e94c31bb4b2cbacac1b87f5
- SHA256
  
  184866a48db2531dfcce10c98fad84235e1364601edc50f20c64a1163cc5fd1e
- SHA512
  
  02c06d2353f660b4ca2c12bccc16d2a0ce0639cb92638b09dc0b0dcd9ab098a87959054fad0652d232ff197292f331943cb514f92c095ab5770db3e7b3000713
- SSDEEP
  
  6144:40mlfM4a0g33ofNpLt23hUsHBYEnjBU9VaoeYQrz3462TAmd9exwxLQrrX7UZgKx:6Cd0g3YvE3vGEijQvojd97LuX7UZgK1v
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2