1d07e755bd3d332526e6d172018ac3e887ced44753bb6fe209a0634b974989d0 | Triage

Sharing

General

Target

471f65487a818945830a75387a9e8d12_JaffaCakes118
Size

14KB
Sample

240714-2tkc5swcrp
MD5

471f65487a818945830a75387a9e8d12
SHA1

bf7bd83d25fe095c19c6baa588c484523fdaf719
SHA256

1d07e755bd3d332526e6d172018ac3e887ced44753bb6fe209a0634b974989d0
SHA512

2b47f1f74ac41410d0cff8c7b8849d86a6df51b79354e132e9552d313e9d0ef83b8769320a5f8ff5b7be96c9ab3a9feed53e64d111dada15b31c6e377e0881e3
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY41b:hDXWipuE+K3/SSHgxmM

Score

7^/10

Malware Config

Targets

- Target
  
  471f65487a818945830a75387a9e8d12_JaffaCakes118
- Size
  
  14KB
- MD5
  
  471f65487a818945830a75387a9e8d12
- SHA1
  
  bf7bd83d25fe095c19c6baa588c484523fdaf719
- SHA256
  
  1d07e755bd3d332526e6d172018ac3e887ced44753bb6fe209a0634b974989d0
- SHA512
  
  2b47f1f74ac41410d0cff8c7b8849d86a6df51b79354e132e9552d313e9d0ef83b8769320a5f8ff5b7be96c9ab3a9feed53e64d111dada15b31c6e377e0881e3
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY41b:hDXWipuE+K3/SSHgxmM
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2