40661c9ae226a680704fe6d95679d90e212aeab4df1a6c064fcaac5e179dc7a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3356430aa03c97825388bdd962d9bf5a_JaffaCakes118
Size

14KB
Sample

240710-fclzrayhkc
MD5

3356430aa03c97825388bdd962d9bf5a
SHA1

e623bb351a35f01d862b0271e09aff82448efff8
SHA256

40661c9ae226a680704fe6d95679d90e212aeab4df1a6c064fcaac5e179dc7a0
SHA512

9b5585b8b830707a02f22eccfd60f2724083c6b5d8e1381913ac000eeaa899bbdcc78b47c90c11923ecc5a9f8ca02229c49504a0776a568a9c0cd76ed8b1c308
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJri:hDXWipuE+K3/SSHgxni

Score

7^/10

Malware Config

Targets

- Target
  
  3356430aa03c97825388bdd962d9bf5a_JaffaCakes118
- Size
  
  14KB
- MD5
  
  3356430aa03c97825388bdd962d9bf5a
- SHA1
  
  e623bb351a35f01d862b0271e09aff82448efff8
- SHA256
  
  40661c9ae226a680704fe6d95679d90e212aeab4df1a6c064fcaac5e179dc7a0
- SHA512
  
  9b5585b8b830707a02f22eccfd60f2724083c6b5d8e1381913ac000eeaa899bbdcc78b47c90c11923ecc5a9f8ca02229c49504a0776a568a9c0cd76ed8b1c308
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJri:hDXWipuE+K3/SSHgxni
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2