9a7aff2310831face11c151ecd8f8ee19c36570ad26124eaa42e323b617a04a3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5d3e9806b97e8321e23a20ce88caa48b_JaffaCakes118
Size

2.0MB
Sample

240719-xmkccaydrf
MD5

5d3e9806b97e8321e23a20ce88caa48b
SHA1

7216a9b6930cee320e9b5062a346f93116c445cf
SHA256

9a7aff2310831face11c151ecd8f8ee19c36570ad26124eaa42e323b617a04a3
SHA512

4cd16f46fc80a9ccc4d46e3cc2fe74600cf23eba0aeac19f88c795f8502d632f13186890ef51e2ea3cb3fdedc650c47165b759e35733f90e50568a6a06fabb3c
SSDEEP

49152:0aRhyb24ycJbGOWfwcWAgAYtcpvyTBzJwOnTo:5RhWBkwcXg1icltXnE

Score

7^/10

Malware Config

Targets

- Target
  
  5d3e9806b97e8321e23a20ce88caa48b_JaffaCakes118
- Size
  
  2.0MB
- MD5
  
  5d3e9806b97e8321e23a20ce88caa48b
- SHA1
  
  7216a9b6930cee320e9b5062a346f93116c445cf
- SHA256
  
  9a7aff2310831face11c151ecd8f8ee19c36570ad26124eaa42e323b617a04a3
- SHA512
  
  4cd16f46fc80a9ccc4d46e3cc2fe74600cf23eba0aeac19f88c795f8502d632f13186890ef51e2ea3cb3fdedc650c47165b759e35733f90e50568a6a06fabb3c
- SSDEEP
  
  49152:0aRhyb24ycJbGOWfwcWAgAYtcpvyTBzJwOnTo:5RhWBkwcXg1icltXnE
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2