6ee262039b2e1e816ffdb04ac1c19bc11eeae876fa5ab57fbd9005ef839e73ff | Triage

Sharing

General

Target

b3d5662a9d2233e883c5175593c6066d_JaffaCakes118
Size

240KB
Sample

240616-q5eq9azcjm
MD5

b3d5662a9d2233e883c5175593c6066d
SHA1

8a79087f715be06dce27606ef5fe93d95ea26ab1
SHA256

6ee262039b2e1e816ffdb04ac1c19bc11eeae876fa5ab57fbd9005ef839e73ff
SHA512

7743a14e0125a864019cb69bcb5501758bd8bba0b00ba6ddad43f6b4293dd2cd7ded267c36bb21f3e272a9839b752b5dccfba04c70a3b3305d019eff36e24d71
SSDEEP

6144:9ZyMeM8GKfnY3GCgc1Xz8FbCddDoxoec0aU4dw:9ZyMehG1cID8FbCddEaU4u

Score

7^/10

Malware Config

Targets

- Target
  
  b3d5662a9d2233e883c5175593c6066d_JaffaCakes118
- Size
  
  240KB
- MD5
  
  b3d5662a9d2233e883c5175593c6066d
- SHA1
  
  8a79087f715be06dce27606ef5fe93d95ea26ab1
- SHA256
  
  6ee262039b2e1e816ffdb04ac1c19bc11eeae876fa5ab57fbd9005ef839e73ff
- SHA512
  
  7743a14e0125a864019cb69bcb5501758bd8bba0b00ba6ddad43f6b4293dd2cd7ded267c36bb21f3e272a9839b752b5dccfba04c70a3b3305d019eff36e24d71
- SSDEEP
  
  6144:9ZyMeM8GKfnY3GCgc1Xz8FbCddDoxoec0aU4dw:9ZyMehG1cID8FbCddEaU4u
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2