675df4e95365007f3f3da8fd28b1e6687cfd513217718b01b8f0ea7562637a21 | Triage

Sharing

General

Target

089db6727582e6e158b513367b561a46_JaffaCakes118
Size

14KB
Sample

240624-p4habawgkq
MD5

089db6727582e6e158b513367b561a46
SHA1

d5b7e927cc79273771472132597b432a096797bd
SHA256

675df4e95365007f3f3da8fd28b1e6687cfd513217718b01b8f0ea7562637a21
SHA512

e914061db4383ca435323fbce02b923ba23b0f23cf1593c020331097fa73bd8d1a948971cdb29595a14be85f97848257902e721cc9a153d9b8c516d44d417298
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZXd2:hDXWipuE+K3/SSHgx3N2

Score

7^/10

Malware Config

Targets

- Target
  
  089db6727582e6e158b513367b561a46_JaffaCakes118
- Size
  
  14KB
- MD5
  
  089db6727582e6e158b513367b561a46
- SHA1
  
  d5b7e927cc79273771472132597b432a096797bd
- SHA256
  
  675df4e95365007f3f3da8fd28b1e6687cfd513217718b01b8f0ea7562637a21
- SHA512
  
  e914061db4383ca435323fbce02b923ba23b0f23cf1593c020331097fa73bd8d1a948971cdb29595a14be85f97848257902e721cc9a153d9b8c516d44d417298
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhZXd2:hDXWipuE+K3/SSHgx3N2
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2