d3fdb2c4fb155873f7f2cefe6d9f9e0aac041afd98a1c34837309289bab6f491 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3036ff80438630911ad823540981b8b3_JaffaCakes118
Size

10KB
Sample

240709-nq3tessbpj
MD5

3036ff80438630911ad823540981b8b3
SHA1

e33a2d0ac490b4403ec1a9104619126204314c20
SHA256

d3fdb2c4fb155873f7f2cefe6d9f9e0aac041afd98a1c34837309289bab6f491
SHA512

175d23fdcdb1674adf26a2fba18683756e75951fd0ba7738a9beaecb97403bf4e4f1823bc3824ee933a3789bc88f4faa14416db7ebce3cd27b30c935dae3a48c
SSDEEP

192:n9lgTt+vm5i9LPxqW8A/pQLoPGJXrX7QeuZw6:vgTEn8AioPq/TN6

Score

7^/10

Malware Config

Targets

- Target
  
  3036ff80438630911ad823540981b8b3_JaffaCakes118
- Size
  
  10KB
- MD5
  
  3036ff80438630911ad823540981b8b3
- SHA1
  
  e33a2d0ac490b4403ec1a9104619126204314c20
- SHA256
  
  d3fdb2c4fb155873f7f2cefe6d9f9e0aac041afd98a1c34837309289bab6f491
- SHA512
  
  175d23fdcdb1674adf26a2fba18683756e75951fd0ba7738a9beaecb97403bf4e4f1823bc3824ee933a3789bc88f4faa14416db7ebce3cd27b30c935dae3a48c
- SSDEEP
  
  192:n9lgTt+vm5i9LPxqW8A/pQLoPGJXrX7QeuZw6:vgTEn8AioPq/TN6
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2