bef7b4b040d6596b82f1d4297c8372ae29199db473a215a80f96c6085aa204be | Triage

Sharing

General

Target

236bd1961ac19227c7feee45caaf571b_JaffaCakes118
Size

15KB
Sample

240703-xn68havekf
MD5

236bd1961ac19227c7feee45caaf571b
SHA1

1b34923f23c6da1fc9c839fa20c3542f66910ad6
SHA256

bef7b4b040d6596b82f1d4297c8372ae29199db473a215a80f96c6085aa204be
SHA512

eddfe1b1b378cf37fd564be97e75ea1d35b7f37f2275a0852c7795bf4824432581e6d6146df309f126e15ce0d41a66f3bd36258e329781e0dafd7492058fd761
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlh:hDXWipuE+K3/SSHgxmlh

Score

7^/10

Malware Config

Targets

- Target
  
  236bd1961ac19227c7feee45caaf571b_JaffaCakes118
- Size
  
  15KB
- MD5
  
  236bd1961ac19227c7feee45caaf571b
- SHA1
  
  1b34923f23c6da1fc9c839fa20c3542f66910ad6
- SHA256
  
  bef7b4b040d6596b82f1d4297c8372ae29199db473a215a80f96c6085aa204be
- SHA512
  
  eddfe1b1b378cf37fd564be97e75ea1d35b7f37f2275a0852c7795bf4824432581e6d6146df309f126e15ce0d41a66f3bd36258e329781e0dafd7492058fd761
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlh:hDXWipuE+K3/SSHgxmlh
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2