f9ba592ada8437b603a30de56db0277e03ec9f60e8053c49ee4a8264f3f14de3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

15e4bf4b762bba00ce17ce250709fec2_JaffaCakes118
Size

14KB
Sample

240627-nyyjnszcph
MD5

15e4bf4b762bba00ce17ce250709fec2
SHA1

18b17c7d94ce7695c2b0af4d70ad709f479fba9b
SHA256

f9ba592ada8437b603a30de56db0277e03ec9f60e8053c49ee4a8264f3f14de3
SHA512

cfeca2da509ecec1e5bc785f24b496a2a9011f5066e2fd927aad838453da2f0fc0dd88ad610fb16885f907af2f3289a665d93d4bc04a0079875ed7a6b1f27851
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYD+:hDXWipuE+K3/SSHgxmD+

Score

7^/10

Malware Config

Targets

- Target
  
  15e4bf4b762bba00ce17ce250709fec2_JaffaCakes118
- Size
  
  14KB
- MD5
  
  15e4bf4b762bba00ce17ce250709fec2
- SHA1
  
  18b17c7d94ce7695c2b0af4d70ad709f479fba9b
- SHA256
  
  f9ba592ada8437b603a30de56db0277e03ec9f60e8053c49ee4a8264f3f14de3
- SHA512
  
  cfeca2da509ecec1e5bc785f24b496a2a9011f5066e2fd927aad838453da2f0fc0dd88ad610fb16885f907af2f3289a665d93d4bc04a0079875ed7a6b1f27851
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYD+:hDXWipuE+K3/SSHgxmD+
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2