5d6517729e3978320be8e4267bac4eb37a89cf98b1c19b369b12c816d96929d0 | Triage

Sharing

General

Target

100fce82f2901c328ade83de47f4d96a_JaffaCakes118
Size

14KB
Sample

240626-aljyvsvfqr
MD5

100fce82f2901c328ade83de47f4d96a
SHA1

f77ac502bc113c4f262ed39e1ef75f517e54bf0c
SHA256

5d6517729e3978320be8e4267bac4eb37a89cf98b1c19b369b12c816d96929d0
SHA512

e6695f3c56b4f669fa86b43fef98800374b81728af2ecd30820f7614dc1a73e753bcdf7e95722a5addd6e4c813583f78c311be79da549836b25aac3faca56090
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhD:hDXWipuE+K3/SSHgxR

Score

7^/10

Malware Config

Targets

- Target
  
  100fce82f2901c328ade83de47f4d96a_JaffaCakes118
- Size
  
  14KB
- MD5
  
  100fce82f2901c328ade83de47f4d96a
- SHA1
  
  f77ac502bc113c4f262ed39e1ef75f517e54bf0c
- SHA256
  
  5d6517729e3978320be8e4267bac4eb37a89cf98b1c19b369b12c816d96929d0
- SHA512
  
  e6695f3c56b4f669fa86b43fef98800374b81728af2ecd30820f7614dc1a73e753bcdf7e95722a5addd6e4c813583f78c311be79da549836b25aac3faca56090
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhD:hDXWipuE+K3/SSHgxR
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2