d462ed2fb1f4a5c898c65a36d2392d7f52c87a4321453e9abbbc5dc230559b36 | Triage

Sharing

General

Target

65f9e5b40f90e52fb94f66e64db152c7_JaffaCakes118
Size

14KB
Sample

240723-d5vq9awcml
MD5

65f9e5b40f90e52fb94f66e64db152c7
SHA1

0300030c7a6c436d38ebffdb23918ae43f091573
SHA256

d462ed2fb1f4a5c898c65a36d2392d7f52c87a4321453e9abbbc5dc230559b36
SHA512

1c2dce7651d92edf0eed1844113e85b5527c67803ca942aba0a6356e8dfba8be84491bbbefa6e7dbc3a7dc3ea9124cc4f6b52867caf1ebf60313ccf0a8bd4d4b
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4hp:hDXWipuE+K3/SSHgxm+

Score

7^/10

Malware Config

Targets

- Target
  
  65f9e5b40f90e52fb94f66e64db152c7_JaffaCakes118
- Size
  
  14KB
- MD5
  
  65f9e5b40f90e52fb94f66e64db152c7
- SHA1
  
  0300030c7a6c436d38ebffdb23918ae43f091573
- SHA256
  
  d462ed2fb1f4a5c898c65a36d2392d7f52c87a4321453e9abbbc5dc230559b36
- SHA512
  
  1c2dce7651d92edf0eed1844113e85b5527c67803ca942aba0a6356e8dfba8be84491bbbefa6e7dbc3a7dc3ea9124cc4f6b52867caf1ebf60313ccf0a8bd4d4b
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY4hp:hDXWipuE+K3/SSHgxm+
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2