c2a4cd5a5e655f16ead7aebff8ada0a1e67cff54d4a1be1d07816cbf3aba5563 | Triage

Sharing

General

Target

366774662ccbe5b67de997b980c250f8_JaffaCakes118
Size

2.0MB
Sample

240710-z26j8szgmk
MD5

366774662ccbe5b67de997b980c250f8
SHA1

7602d334fe709c484d07011334a08801c70b4015
SHA256

c2a4cd5a5e655f16ead7aebff8ada0a1e67cff54d4a1be1d07816cbf3aba5563
SHA512

6b2098208a6af2bdced31a7a143d753b3f31b65cace33e3533da2b1ea1c06197d22a697934d62329fa5b12eeb876979198305f70ce46d7d57fcc429962d87208
SSDEEP

49152:hPmzRUWcCvItro4EfcOPzePmzRUWcCvItro4Efc1PzqPN:hPmzRT14szePmzRT14VzqPN

Score

7^/10

Malware Config

Targets

- Target
  
  366774662ccbe5b67de997b980c250f8_JaffaCakes118
- Size
  
  2.0MB
- MD5
  
  366774662ccbe5b67de997b980c250f8
- SHA1
  
  7602d334fe709c484d07011334a08801c70b4015
- SHA256
  
  c2a4cd5a5e655f16ead7aebff8ada0a1e67cff54d4a1be1d07816cbf3aba5563
- SHA512
  
  6b2098208a6af2bdced31a7a143d753b3f31b65cace33e3533da2b1ea1c06197d22a697934d62329fa5b12eeb876979198305f70ce46d7d57fcc429962d87208
- SSDEEP
  
  49152:hPmzRUWcCvItro4EfcOPzePmzRUWcCvItro4Efc1PzqPN:hPmzRT14szePmzRT14VzqPN
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2