5829528f7264ece5d4aac68c708a7ad6f031136ef24defde73ed57da2c1e398f | Triage

Sharing

Copy URL Twitter E-mail

General

Target

35914232898299b5f8f43dd19770dc84_JaffaCakes118
Size

15KB
Sample

240710-vcem1aydrq
MD5

35914232898299b5f8f43dd19770dc84
SHA1

92c4ccfe735f3f3a7122ecb966cd6b886de6110a
SHA256

5829528f7264ece5d4aac68c708a7ad6f031136ef24defde73ed57da2c1e398f
SHA512

aed32ccdc04eff19766841db7d94ee6b914776a53707143bbd5fc9889bd730739a9be54102aa1bbeaea76292b7243546e14b55f7df2009db5912eddce2341361
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYKB2H0s:hDXWipuE+K3/SSHgxmKEX

Score

7^/10

Malware Config

Targets

- Target
  
  35914232898299b5f8f43dd19770dc84_JaffaCakes118
- Size
  
  15KB
- MD5
  
  35914232898299b5f8f43dd19770dc84
- SHA1
  
  92c4ccfe735f3f3a7122ecb966cd6b886de6110a
- SHA256
  
  5829528f7264ece5d4aac68c708a7ad6f031136ef24defde73ed57da2c1e398f
- SHA512
  
  aed32ccdc04eff19766841db7d94ee6b914776a53707143bbd5fc9889bd730739a9be54102aa1bbeaea76292b7243546e14b55f7df2009db5912eddce2341361
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYKB2H0s:hDXWipuE+K3/SSHgxmKEX
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2