ba31660aaea6e1db272ed051f10edb68c2aa8618d595a1c784a8eaf8b98716cc | Triage

Sharing

General

Target

0af5cf02ae4e6ddfed1bc9d927d9738f_JaffaCakes118
Size

14KB
Sample

240624-2c5mravfmf
MD5

0af5cf02ae4e6ddfed1bc9d927d9738f
SHA1

3e515fe0be70cc8111c109e57b1af675106b878b
SHA256

ba31660aaea6e1db272ed051f10edb68c2aa8618d595a1c784a8eaf8b98716cc
SHA512

6381133476861152c414384295c4660aabcd68680c19cb1778cde5930929bfbaea703e7ca6c3cfa8ca2b523f1c85d39e8e034cb86d1f08f93c0bdd8a36cab73d
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYT/:hDXWipuE+K3/SSHgxmT

Score

7^/10

Malware Config

Targets

- Target
  
  0af5cf02ae4e6ddfed1bc9d927d9738f_JaffaCakes118
- Size
  
  14KB
- MD5
  
  0af5cf02ae4e6ddfed1bc9d927d9738f
- SHA1
  
  3e515fe0be70cc8111c109e57b1af675106b878b
- SHA256
  
  ba31660aaea6e1db272ed051f10edb68c2aa8618d595a1c784a8eaf8b98716cc
- SHA512
  
  6381133476861152c414384295c4660aabcd68680c19cb1778cde5930929bfbaea703e7ca6c3cfa8ca2b523f1c85d39e8e034cb86d1f08f93c0bdd8a36cab73d
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYT/:hDXWipuE+K3/SSHgxmT
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2