a685f60c91e9a27cb9e274dc33b79a1d915410689234fa02cb1f9648c8858044 | Triage

Sharing

General

Target

38fd2d58dde7d5e4413a5d3d8a03c64b_JaffaCakes118
Size

16KB
Sample

240711-nyqttsxdqd
MD5

38fd2d58dde7d5e4413a5d3d8a03c64b
SHA1

ccff38fda2cb03f1ad821a1fa04e0ade54d2bc0f
SHA256

a685f60c91e9a27cb9e274dc33b79a1d915410689234fa02cb1f9648c8858044
SHA512

b4927d91c66c4ae7367181945ffd79abe39c3b2ef131f57174935f486f5a2b1cbe99aed271054024e29732d7124feffff1706dd35d24c8c09ea76f9d233f7f12
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+LY:hDXWipuE+K3/SSHgxmH1

Score

7^/10

Malware Config

Targets

- Target
  
  38fd2d58dde7d5e4413a5d3d8a03c64b_JaffaCakes118
- Size
  
  16KB
- MD5
  
  38fd2d58dde7d5e4413a5d3d8a03c64b
- SHA1
  
  ccff38fda2cb03f1ad821a1fa04e0ade54d2bc0f
- SHA256
  
  a685f60c91e9a27cb9e274dc33b79a1d915410689234fa02cb1f9648c8858044
- SHA512
  
  b4927d91c66c4ae7367181945ffd79abe39c3b2ef131f57174935f486f5a2b1cbe99aed271054024e29732d7124feffff1706dd35d24c8c09ea76f9d233f7f12
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+LY:hDXWipuE+K3/SSHgxmH1
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2