c76d117cfa6fef441af15b0c94249437358d1abaee325caa1dc2d0af9816b48d | Triage

Sharing

General

Target

0b54e5c493b454b802bd6d3df61164dc_JaffaCakes118
Size

187KB
Sample

240624-3qnrts1hqq
MD5

0b54e5c493b454b802bd6d3df61164dc
SHA1

e10d5e5727228da987ca7a3b92c924f15176ed65
SHA256

c76d117cfa6fef441af15b0c94249437358d1abaee325caa1dc2d0af9816b48d
SHA512

28828f00bfd55eb033392dbffda57f2180911637168825ae202f0ab158a6698933d3bc4fea5dedd5f8ed46ac9c967d69c566b09231f7d91ab3e1e17ee6ab2e3c
SSDEEP

3072:zB2f+AUTpldpukuG41s51qSBt9Ci6/52QpSpzvjc4q5cgm3Dl6aSv/4:tA+AUTpldpbKSBt8l52Q49vj5q5xMUab

Score

7^/10

Malware Config

Targets

- Target
  
  0b54e5c493b454b802bd6d3df61164dc_JaffaCakes118
- Size
  
  187KB
- MD5
  
  0b54e5c493b454b802bd6d3df61164dc
- SHA1
  
  e10d5e5727228da987ca7a3b92c924f15176ed65
- SHA256
  
  c76d117cfa6fef441af15b0c94249437358d1abaee325caa1dc2d0af9816b48d
- SHA512
  
  28828f00bfd55eb033392dbffda57f2180911637168825ae202f0ab158a6698933d3bc4fea5dedd5f8ed46ac9c967d69c566b09231f7d91ab3e1e17ee6ab2e3c
- SSDEEP
  
  3072:zB2f+AUTpldpukuG41s51qSBt9Ci6/52QpSpzvjc4q5cgm3Dl6aSv/4:tA+AUTpldpbKSBt8l52Q49vj5q5xMUab
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2