9f2173862d9a80cc7e1148f0ba178b73de76dd7d6ae0a6fd8fff9114a3e140fc | Triage

Sharing

General

Target

22a38029ca6945568a588f1967e191c2_JaffaCakes118
Size

14KB
Sample

240703-rgzbes1hlg
MD5

22a38029ca6945568a588f1967e191c2
SHA1

b1cf486918e951a80df05e7e3bc8149941829cc4
SHA256

9f2173862d9a80cc7e1148f0ba178b73de76dd7d6ae0a6fd8fff9114a3e140fc
SHA512

67c55fd743add96902cdacad32071df407538e9e92face9964308d4afd863f73dd49eab9c8190414077c612c98dac27f0c0c8030b254b18b3d5ca479f6110108
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhWD:hDXWipuE+K3/SSHgxcD

Score

7^/10

Malware Config

Targets

- Target
  
  22a38029ca6945568a588f1967e191c2_JaffaCakes118
- Size
  
  14KB
- MD5
  
  22a38029ca6945568a588f1967e191c2
- SHA1
  
  b1cf486918e951a80df05e7e3bc8149941829cc4
- SHA256
  
  9f2173862d9a80cc7e1148f0ba178b73de76dd7d6ae0a6fd8fff9114a3e140fc
- SHA512
  
  67c55fd743add96902cdacad32071df407538e9e92face9964308d4afd863f73dd49eab9c8190414077c612c98dac27f0c0c8030b254b18b3d5ca479f6110108
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhWD:hDXWipuE+K3/SSHgxcD
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2