ded1ee98c831a7ff446fb0565f50765353de6921955e2f2d1ed6b712a7076deb | Triage

Sharing

General

Target

0ca1212d32e34b2c156143eeba5f4155_JaffaCakes118
Size

14KB
Sample

240625-fgtv6avcnm
MD5

0ca1212d32e34b2c156143eeba5f4155
SHA1

e1a01dd6820e042e68daa06ff920966f7d41be3b
SHA256

ded1ee98c831a7ff446fb0565f50765353de6921955e2f2d1ed6b712a7076deb
SHA512

3653583de6c74b6217e34001d58e3f2bb42140c1f6e11db2425936ca5fda88ccd8c50ba9feae9e80c8a1ae89c3f26087fd8eb551fa9279908e65c8805914df0a
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY24wv:hDXWipuE+K3/SSHgxm24wv

Score

7^/10

Malware Config

Targets

- Target
  
  0ca1212d32e34b2c156143eeba5f4155_JaffaCakes118
- Size
  
  14KB
- MD5
  
  0ca1212d32e34b2c156143eeba5f4155
- SHA1
  
  e1a01dd6820e042e68daa06ff920966f7d41be3b
- SHA256
  
  ded1ee98c831a7ff446fb0565f50765353de6921955e2f2d1ed6b712a7076deb
- SHA512
  
  3653583de6c74b6217e34001d58e3f2bb42140c1f6e11db2425936ca5fda88ccd8c50ba9feae9e80c8a1ae89c3f26087fd8eb551fa9279908e65c8805914df0a
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY24wv:hDXWipuE+K3/SSHgxm24wv
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2