88536141f176da07d5141f80357ebd99bf739c21b76129acce69de6e1a3ec50c | Triage

Sharing

General

Target

34dcf09c98326ca9d077f56c2552a916_JaffaCakes118
Size

14KB
Sample

240710-qgwd4asbqa
MD5

34dcf09c98326ca9d077f56c2552a916
SHA1

b529372da8a86eca44d29e6adc54b31ae3bdd4c8
SHA256

88536141f176da07d5141f80357ebd99bf739c21b76129acce69de6e1a3ec50c
SHA512

4a5fe167e47088b0fe58051bc8a3c53162f2da13ccd0c67a1f2e4a978c55372142d52d3ee9cbf8930eeff28ca5a3d1d5e559a9e931cfb489a7c0686d60fb68ae
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlI:hDXWipuE+K3/SSHgxmlI

Score

7^/10

Malware Config

Targets

- Target
  
  34dcf09c98326ca9d077f56c2552a916_JaffaCakes118
- Size
  
  14KB
- MD5
  
  34dcf09c98326ca9d077f56c2552a916
- SHA1
  
  b529372da8a86eca44d29e6adc54b31ae3bdd4c8
- SHA256
  
  88536141f176da07d5141f80357ebd99bf739c21b76129acce69de6e1a3ec50c
- SHA512
  
  4a5fe167e47088b0fe58051bc8a3c53162f2da13ccd0c67a1f2e4a978c55372142d52d3ee9cbf8930eeff28ca5a3d1d5e559a9e931cfb489a7c0686d60fb68ae
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlI:hDXWipuE+K3/SSHgxmlI
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2