b74b4376c4ddec0dda13b4cbfbe4713c7e3a30e05cf3223503ed29efe78a17a9 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5f3283334f76bad1f60f28f29a59fd43_JaffaCakes118
Size

129KB
Sample

240720-f6355asakf
MD5

5f3283334f76bad1f60f28f29a59fd43
SHA1

4b491e84bda602c3f907608285130c6148683357
SHA256

b74b4376c4ddec0dda13b4cbfbe4713c7e3a30e05cf3223503ed29efe78a17a9
SHA512

4fd584159a1592adf04d15d04f77ed89f2918a5d4201a05a7b132d260bb3dc7fb713a33b5214e7751743780d430da90f894eb3e38813a345e6e4368eea0cd0ea
SSDEEP

3072:l/PqsKB4yHPQ5HgSYUHJaOu0bgMRDb1DIF:lCBRP0H/laf0bHDb10F

Score

7^/10

Malware Config

Targets

- Target
  
  5f3283334f76bad1f60f28f29a59fd43_JaffaCakes118
- Size
  
  129KB
- MD5
  
  5f3283334f76bad1f60f28f29a59fd43
- SHA1
  
  4b491e84bda602c3f907608285130c6148683357
- SHA256
  
  b74b4376c4ddec0dda13b4cbfbe4713c7e3a30e05cf3223503ed29efe78a17a9
- SHA512
  
  4fd584159a1592adf04d15d04f77ed89f2918a5d4201a05a7b132d260bb3dc7fb713a33b5214e7751743780d430da90f894eb3e38813a345e6e4368eea0cd0ea
- SSDEEP
  
  3072:l/PqsKB4yHPQ5HgSYUHJaOu0bgMRDb1DIF:lCBRP0H/laf0bHDb10F
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2