5c0d3b8c26b55ea82e432bd5b125f5a0659f99fb459e77629a8a84c2c1a2de7e | Triage

Sharing

General

Target

35dd25c590ee4de5137c3b36a1af1c66_JaffaCakes118
Size

14KB
Sample

240710-w1z5aasgml
MD5

35dd25c590ee4de5137c3b36a1af1c66
SHA1

bdc36e0effb2fe58c79be5be25117781d75850e4
SHA256

5c0d3b8c26b55ea82e432bd5b125f5a0659f99fb459e77629a8a84c2c1a2de7e
SHA512

f5231281046e94e73015172724935b4a9726d83ebfc531b23613b105dede4ac5e3bcaf8814f46907b74dfea32dfbbe1638dd0926ff3206f4e7e9dedb5c839b33
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlp:hDXWipuE+K3/SSHgxmlp

Score

7^/10

Malware Config

Targets

- Target
  
  35dd25c590ee4de5137c3b36a1af1c66_JaffaCakes118
- Size
  
  14KB
- MD5
  
  35dd25c590ee4de5137c3b36a1af1c66
- SHA1
  
  bdc36e0effb2fe58c79be5be25117781d75850e4
- SHA256
  
  5c0d3b8c26b55ea82e432bd5b125f5a0659f99fb459e77629a8a84c2c1a2de7e
- SHA512
  
  f5231281046e94e73015172724935b4a9726d83ebfc531b23613b105dede4ac5e3bcaf8814f46907b74dfea32dfbbe1638dd0926ff3206f4e7e9dedb5c839b33
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYlp:hDXWipuE+K3/SSHgxmlp
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2