fcaf1c7dd5502a3afbdb956fbcbcead5fb184032a5318e7e41e35a52e1805175 | Triage

Sharing

General

Target

4626e73a86226c778a63955ae295166b_JaffaCakes118
Size

81KB
Sample

240714-rf7amstdjn
MD5

4626e73a86226c778a63955ae295166b
SHA1

ef6e47dc0bf4d7dc5d068a77e7573be0fb30fb15
SHA256

fcaf1c7dd5502a3afbdb956fbcbcead5fb184032a5318e7e41e35a52e1805175
SHA512

5f923870407cd6ea5877e30e9cbd809fc48c016955ccda5a6c869335d4c60d708490b47a9267fa42f56d84401a5ab848d39354cac20bc694e88445032b92ce6d
SSDEEP

384:qoKHZ9Y7TgagNdFfIvHF3dtC0I1GmpwfGRCs+s:0QH9czefzUL

Score

7^/10

Malware Config

Targets

- Target
  
  4626e73a86226c778a63955ae295166b_JaffaCakes118
- Size
  
  81KB
- MD5
  
  4626e73a86226c778a63955ae295166b
- SHA1
  
  ef6e47dc0bf4d7dc5d068a77e7573be0fb30fb15
- SHA256
  
  fcaf1c7dd5502a3afbdb956fbcbcead5fb184032a5318e7e41e35a52e1805175
- SHA512
  
  5f923870407cd6ea5877e30e9cbd809fc48c016955ccda5a6c869335d4c60d708490b47a9267fa42f56d84401a5ab848d39354cac20bc694e88445032b92ce6d
- SSDEEP
  
  384:qoKHZ9Y7TgagNdFfIvHF3dtC0I1GmpwfGRCs+s:0QH9czefzUL
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2