d633ff01d34bf0f3edf3240a30ec6a14436cdeb9bc42059b080355c29abb024a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0d28850c8fe47ed80f8f4b1a9c87bc55_JaffaCakes118
Size

14KB
Sample

240625-hzlzdawckg
MD5

0d28850c8fe47ed80f8f4b1a9c87bc55
SHA1

25888a2517881aba5e77dd0a0b652df73c46b304
SHA256

d633ff01d34bf0f3edf3240a30ec6a14436cdeb9bc42059b080355c29abb024a
SHA512

722e92006311fa2f659be3fbc569e88469509b524301d1b8b07bd37367685b3242e6ed22bae13ab303a92a5a02463d02c1031cd1352941b60057575cd16a5d57
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhH:hDXWipuE+K3/SSHgx9

Score

7^/10

Malware Config

Targets

- Target
  
  0d28850c8fe47ed80f8f4b1a9c87bc55_JaffaCakes118
- Size
  
  14KB
- MD5
  
  0d28850c8fe47ed80f8f4b1a9c87bc55
- SHA1
  
  25888a2517881aba5e77dd0a0b652df73c46b304
- SHA256
  
  d633ff01d34bf0f3edf3240a30ec6a14436cdeb9bc42059b080355c29abb024a
- SHA512
  
  722e92006311fa2f659be3fbc569e88469509b524301d1b8b07bd37367685b3242e6ed22bae13ab303a92a5a02463d02c1031cd1352941b60057575cd16a5d57
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhH:hDXWipuE+K3/SSHgx9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2