c7df9e021159c40fd63db01ca0512a9971c26472e84fbd1564bf28893a5536a4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

228e8f568574dfc9ecc476dd13ed197d_JaffaCakes118
Size

2.5MB
Sample

240703-q14jtazcnb
MD5

228e8f568574dfc9ecc476dd13ed197d
SHA1

a5f5ed1c16723702f675726ca15d44cb6e32f594
SHA256

c7df9e021159c40fd63db01ca0512a9971c26472e84fbd1564bf28893a5536a4
SHA512

a61a219724924afda00740ed6acb6cadbb25dea5e6dd1998612d078e4e4b7c41ba9e08c244b37510e399adf0fcecfd1bf7413e4a4893c81fed50b2452a812e52
SSDEEP

49152:ocy796EvMtTx435MtV+rnUgKLWgAOXDHpSeZtk6EBI1rL:47AEvgVOXUgKLWgAWHXyHC

Score

7^/10

Malware Config

Targets

- Target
  
  228e8f568574dfc9ecc476dd13ed197d_JaffaCakes118
- Size
  
  2.5MB
- MD5
  
  228e8f568574dfc9ecc476dd13ed197d
- SHA1
  
  a5f5ed1c16723702f675726ca15d44cb6e32f594
- SHA256
  
  c7df9e021159c40fd63db01ca0512a9971c26472e84fbd1564bf28893a5536a4
- SHA512
  
  a61a219724924afda00740ed6acb6cadbb25dea5e6dd1998612d078e4e4b7c41ba9e08c244b37510e399adf0fcecfd1bf7413e4a4893c81fed50b2452a812e52
- SSDEEP
  
  49152:ocy796EvMtTx435MtV+rnUgKLWgAOXDHpSeZtk6EBI1rL:47AEvgVOXUgKLWgAWHXyHC
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2