6d3cb3e612dcdb8d00b495edd26b575736f57425c152fa30b86ffb3e2d157183 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d1cff640567beec9e0b0ab440f01756_JaffaCakes118
Size

14KB
Sample

240712-m6n5jasgrh
MD5

3d1cff640567beec9e0b0ab440f01756
SHA1

9ca17c72266ba636bcae5c427457601df776a514
SHA256

6d3cb3e612dcdb8d00b495edd26b575736f57425c152fa30b86ffb3e2d157183
SHA512

1fa4bdc78f11e054e3ffdd22d648edd49bdc5daa0628b66f80a86014c69cb1966a2f230c9bfe711bd46e42728824fa414f14c80878dfee92c55458fbc20f4856
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh5R62E:hDXWipuE+K3/SSHgx9E

Score

7^/10

Malware Config

Targets

- Target
  
  3d1cff640567beec9e0b0ab440f01756_JaffaCakes118
- Size
  
  14KB
- MD5
  
  3d1cff640567beec9e0b0ab440f01756
- SHA1
  
  9ca17c72266ba636bcae5c427457601df776a514
- SHA256
  
  6d3cb3e612dcdb8d00b495edd26b575736f57425c152fa30b86ffb3e2d157183
- SHA512
  
  1fa4bdc78f11e054e3ffdd22d648edd49bdc5daa0628b66f80a86014c69cb1966a2f230c9bfe711bd46e42728824fa414f14c80878dfee92c55458fbc20f4856
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh5R62E:hDXWipuE+K3/SSHgx9E
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2