37295fb04dd1a7cbe646cb98b4e04bc66b6c07b7ff58323e68d6e62a43461836 | Triage

Sharing

General

Target

66e3aa408e456a0cbc25b57d3217e555_JaffaCakes118
Size

2.5MB
Sample

240723-kqb4xsxdje
MD5

66e3aa408e456a0cbc25b57d3217e555
SHA1

884752496f5b7511021d87f296915f474ca1224b
SHA256

37295fb04dd1a7cbe646cb98b4e04bc66b6c07b7ff58323e68d6e62a43461836
SHA512

5acf59ac8b2cd75fbeb8e06792cadbc41911248637348e1fa3c7b459fff8cf2f0e712540c035dfd18baeb6bb2fd55f6d41a30f1529f6b27c51d9fc236a0ba31f
SSDEEP

49152:oky796EvMtTx435MtV+Oj29Ls3t/cwCxHHlc2KP1z8o/MO2Uqed3yBI1rh:o7AEvgVOy29Ls3JslVYzjMO26ik

Score

7^/10

Malware Config

Targets

- Target
  
  66e3aa408e456a0cbc25b57d3217e555_JaffaCakes118
- Size
  
  2.5MB
- MD5
  
  66e3aa408e456a0cbc25b57d3217e555
- SHA1
  
  884752496f5b7511021d87f296915f474ca1224b
- SHA256
  
  37295fb04dd1a7cbe646cb98b4e04bc66b6c07b7ff58323e68d6e62a43461836
- SHA512
  
  5acf59ac8b2cd75fbeb8e06792cadbc41911248637348e1fa3c7b459fff8cf2f0e712540c035dfd18baeb6bb2fd55f6d41a30f1529f6b27c51d9fc236a0ba31f
- SSDEEP
  
  49152:oky796EvMtTx435MtV+Oj29Ls3t/cwCxHHlc2KP1z8o/MO2Uqed3yBI1rh:o7AEvgVOy29Ls3JslVYzjMO26ik
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2