0e4236cdaf1bb3240aae3113ebf0dfc235cb59b80141e442a85add5ded908e07 | Triage

Sharing

General

Target

0f7dd5ca7af4a7b7354bc21b67e910f0_JaffaCakes118
Size

51KB
Sample

240625-zpewravfjn
MD5

0f7dd5ca7af4a7b7354bc21b67e910f0
SHA1

8d43534f6c0d65044a7f7c6688d71ea397542bb2
SHA256

0e4236cdaf1bb3240aae3113ebf0dfc235cb59b80141e442a85add5ded908e07
SHA512

0a66bd5cef74ed27da6e607a586a34add742afd453416f71f9d3e04da2080b7ed1c81b50886a15b3447b54f90ae8dd65d62b8f92ca67e358896169c666da253f
SSDEEP

768:EyW1yBtObv0U/xwPp0EoooiYECG2nZF5sZVcmxMbR:24Bobv7aB0EooYEC3rUVcY6

Score

7^/10

Malware Config

Targets

- Target
  
  0f7dd5ca7af4a7b7354bc21b67e910f0_JaffaCakes118
- Size
  
  51KB
- MD5
  
  0f7dd5ca7af4a7b7354bc21b67e910f0
- SHA1
  
  8d43534f6c0d65044a7f7c6688d71ea397542bb2
- SHA256
  
  0e4236cdaf1bb3240aae3113ebf0dfc235cb59b80141e442a85add5ded908e07
- SHA512
  
  0a66bd5cef74ed27da6e607a586a34add742afd453416f71f9d3e04da2080b7ed1c81b50886a15b3447b54f90ae8dd65d62b8f92ca67e358896169c666da253f
- SSDEEP
  
  768:EyW1yBtObv0U/xwPp0EoooiYECG2nZF5sZVcmxMbR:24Bobv7aB0EooYEC3rUVcY6
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2