f92e0f6057ea8b58848c0d2cf98ee3115605087ac0f87ec4dbca0bea5225fbc3 | Triage

Sharing

General

Target

478addbe3c33f4064ac691e7310a9eff_JaffaCakes118
Size

15KB
Sample

240715-bba4mszhrq
MD5

478addbe3c33f4064ac691e7310a9eff
SHA1

70535c06a0702aebac4fd43ea0c5b830e7115957
SHA256

f92e0f6057ea8b58848c0d2cf98ee3115605087ac0f87ec4dbca0bea5225fbc3
SHA512

7291b56b3fe0f51b071789a4a52343b56943b1700b162cd42921a1c0a78d4b0be446076e5d4fdae4f530a73cb414f06d09428a4b2686fc2081d97d6718b34467
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJEHe:hDXWipuE+K3/SSHgxWe

Score

7^/10

Malware Config

Targets

- Target
  
  478addbe3c33f4064ac691e7310a9eff_JaffaCakes118
- Size
  
  15KB
- MD5
  
  478addbe3c33f4064ac691e7310a9eff
- SHA1
  
  70535c06a0702aebac4fd43ea0c5b830e7115957
- SHA256
  
  f92e0f6057ea8b58848c0d2cf98ee3115605087ac0f87ec4dbca0bea5225fbc3
- SHA512
  
  7291b56b3fe0f51b071789a4a52343b56943b1700b162cd42921a1c0a78d4b0be446076e5d4fdae4f530a73cb414f06d09428a4b2686fc2081d97d6718b34467
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJEHe:hDXWipuE+K3/SSHgxWe
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2