General

  • Target

    0d8dce41464d13e11314d40f22d6f500_JaffaCakes118

  • Size

    210KB

  • Sample

    240625-lgqrdsvcpk

  • MD5

    0d8dce41464d13e11314d40f22d6f500

  • SHA1

    876b89ca1d81a7566bbfb173890bdb23e412d183

  • SHA256

    68251438297df846e2f9367684c60c75b60f1af09c01a2a630f3b6b251bc4dca

  • SHA512

    9a90d8e3079213ebd3973cec7ed667a18358368158091738d219cf6e9e77dea675ffe6750a5b6dee61c8356952b9fb92483f8b17edd7a2a72f23cf9502551a81

  • SSDEEP

    3072:Nm9OuDUtnfse+9TIALYnMGEEB5Zf2JMVoutX:Nm8uufse+JIAKEEBHdVoSX

Score
7/10

Malware Config

Targets

    • Target

      0d8dce41464d13e11314d40f22d6f500_JaffaCakes118

    • Size

      210KB

    • MD5

      0d8dce41464d13e11314d40f22d6f500

    • SHA1

      876b89ca1d81a7566bbfb173890bdb23e412d183

    • SHA256

      68251438297df846e2f9367684c60c75b60f1af09c01a2a630f3b6b251bc4dca

    • SHA512

      9a90d8e3079213ebd3973cec7ed667a18358368158091738d219cf6e9e77dea675ffe6750a5b6dee61c8356952b9fb92483f8b17edd7a2a72f23cf9502551a81

    • SSDEEP

      3072:Nm9OuDUtnfse+9TIALYnMGEEB5Zf2JMVoutX:Nm8uufse+JIAKEEBHdVoSX

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Loads dropped DLL

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks