579966ee8692b4c4743aa35306253cc318c43088702395c695bc691c167cd00f | Triage

Sharing

General

Target

38b00c0c337a2839dd9f03181f3222a7_JaffaCakes118
Size

4KB
Sample

240711-l6fygssanp
MD5

38b00c0c337a2839dd9f03181f3222a7
SHA1

e7dac4679ff69e7269dea58b5c909e3a73d3fb47
SHA256

579966ee8692b4c4743aa35306253cc318c43088702395c695bc691c167cd00f
SHA512

4d2d062d8e800485110e9601d5d57ccde18aecb67869a3eff68fe1da4559c86aefd614603a7ebfe40e6f75a2c0092906cc25b96dafaa6d21d215ec2fc414bce9
SSDEEP

24:nbB4nHFXBmQ/Ux0xq3ckoBCPUtNQ/mCL1Fq0GV0GsZVPQ/m8Tm6DKuhV1l:nN4nOk00/3NQ/mF0GVkxQ/m5KKuhp

Score

7^/10

Malware Config

Targets

- Target
  
  38b00c0c337a2839dd9f03181f3222a7_JaffaCakes118
- Size
  
  4KB
- MD5
  
  38b00c0c337a2839dd9f03181f3222a7
- SHA1
  
  e7dac4679ff69e7269dea58b5c909e3a73d3fb47
- SHA256
  
  579966ee8692b4c4743aa35306253cc318c43088702395c695bc691c167cd00f
- SHA512
  
  4d2d062d8e800485110e9601d5d57ccde18aecb67869a3eff68fe1da4559c86aefd614603a7ebfe40e6f75a2c0092906cc25b96dafaa6d21d215ec2fc414bce9
- SSDEEP
  
  24:nbB4nHFXBmQ/Ux0xq3ckoBCPUtNQ/mCL1Fq0GV0GsZVPQ/m8Tm6DKuhV1l:nN4nOk00/3NQ/mF0GVkxQ/m5KKuhp
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2