57f8628b2a3f41b31aa0f1d01942f0f8f570efe32e184795789ec897ee61be0e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

25fe7e3f1f368303622cfc965cc49a0b_JaffaCakes118
Size

14KB
Sample

240704-x8m1csvdrn
MD5

25fe7e3f1f368303622cfc965cc49a0b
SHA1

d3a0ff1a4522d50b95457542a74b5da6b0b82b3d
SHA256

57f8628b2a3f41b31aa0f1d01942f0f8f570efe32e184795789ec897ee61be0e
SHA512

32036a5603d6750afbc7546c50142fe8c4b067256409341745d455f1cf72a9d3b94962e6bbf66cb4213210594c8df0735b12e214fb1267a034ce5daa461c2ca0
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYl1:hDXWipuE+K3/SSHgxml1

Score

7^/10

Malware Config

Targets

- Target
  
  25fe7e3f1f368303622cfc965cc49a0b_JaffaCakes118
- Size
  
  14KB
- MD5
  
  25fe7e3f1f368303622cfc965cc49a0b
- SHA1
  
  d3a0ff1a4522d50b95457542a74b5da6b0b82b3d
- SHA256
  
  57f8628b2a3f41b31aa0f1d01942f0f8f570efe32e184795789ec897ee61be0e
- SHA512
  
  32036a5603d6750afbc7546c50142fe8c4b067256409341745d455f1cf72a9d3b94962e6bbf66cb4213210594c8df0735b12e214fb1267a034ce5daa461c2ca0
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYl1:hDXWipuE+K3/SSHgxml1
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2