bad4403cce9e58774834908ef0026af01c140ad7130f5a237d95979209673896 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

1619fc148fa81f0b5480c853dfd8266f_JaffaCakes118
Size

14KB
Sample

240627-qanqnssfke
MD5

1619fc148fa81f0b5480c853dfd8266f
SHA1

ef92735812228c3c92ef8ee46e21242ed6b2306d
SHA256

bad4403cce9e58774834908ef0026af01c140ad7130f5a237d95979209673896
SHA512

8534e4057ec2d867f5594a21a42f05ae553803f5d4e7ad3c44622b0ae242ea19ef0fc6c440d4b3f5dde9fb1d8096a21a86cd3f0ae707f00c10fd75c3e4a403ef
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh5:hDXWipuE+K3/SSHgxD

Score

7^/10

Malware Config

Targets

- Target
  
  1619fc148fa81f0b5480c853dfd8266f_JaffaCakes118
- Size
  
  14KB
- MD5
  
  1619fc148fa81f0b5480c853dfd8266f
- SHA1
  
  ef92735812228c3c92ef8ee46e21242ed6b2306d
- SHA256
  
  bad4403cce9e58774834908ef0026af01c140ad7130f5a237d95979209673896
- SHA512
  
  8534e4057ec2d867f5594a21a42f05ae553803f5d4e7ad3c44622b0ae242ea19ef0fc6c440d4b3f5dde9fb1d8096a21a86cd3f0ae707f00c10fd75c3e4a403ef
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh5:hDXWipuE+K3/SSHgxD
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2