7fbabcf7337c0d4be1c157c11fe3dcefb62b986923fbd9f08971f49fc00f1bef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

18e93238f4cdc3252d23ce1dd8e705d6_JaffaCakes118
Size

20KB
Sample

240628-fyl7msshqe
MD5

18e93238f4cdc3252d23ce1dd8e705d6
SHA1

2cca5b24f4ac4057ee248a639d38479043afb652
SHA256

7fbabcf7337c0d4be1c157c11fe3dcefb62b986923fbd9f08971f49fc00f1bef
SHA512

dbde84a078b5f3c06910d056696e2be45ed5170417d82415ffa8202e7ed97d34e6835af402cae8d9e91a1f40546908752e6d311d9004c045ad6750fb19b84722
SSDEEP

192:hU5odLrRwiLluGvDbDFoqar+K+JCkqVJP2JiupC1tS21UCV+AjwjHQwu:+5u+GvDcVe4OCV74m

Score

7^/10

Malware Config

Targets

- Target
  
  18e93238f4cdc3252d23ce1dd8e705d6_JaffaCakes118
- Size
  
  20KB
- MD5
  
  18e93238f4cdc3252d23ce1dd8e705d6
- SHA1
  
  2cca5b24f4ac4057ee248a639d38479043afb652
- SHA256
  
  7fbabcf7337c0d4be1c157c11fe3dcefb62b986923fbd9f08971f49fc00f1bef
- SHA512
  
  dbde84a078b5f3c06910d056696e2be45ed5170417d82415ffa8202e7ed97d34e6835af402cae8d9e91a1f40546908752e6d311d9004c045ad6750fb19b84722
- SSDEEP
  
  192:hU5odLrRwiLluGvDbDFoqar+K+JCkqVJP2JiupC1tS21UCV+AjwjHQwu:+5u+GvDcVe4OCV74m
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2