e39fad7d5cf0cb5addf715e73253bc8d5e45dd68cf50a720b80cf9bd524801ac | Triage

Sharing

General

Target

f603cbd332ba99efa547948f39c63825_JaffaCakes118
Size

14KB
Sample

240925-pnb4csvfnj
MD5

f603cbd332ba99efa547948f39c63825
SHA1

4040a5778c72d7ed19f1baadd6f3a4e47314f43b
SHA256

e39fad7d5cf0cb5addf715e73253bc8d5e45dd68cf50a720b80cf9bd524801ac
SHA512

1264cb317faa3867d24827066e4e14d8c7097b56a18386e6ab5e65ee34feb7476306fa4d383a01d72166e41b8d199c8299f3f0b34d19728b5dcac962ec984971
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYJG6:hDXWipuE+K3/SSHgxmw6

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f603cbd332ba99efa547948f39c63825_JaffaCakes118
- Size
  
  14KB
- MD5
  
  f603cbd332ba99efa547948f39c63825
- SHA1
  
  4040a5778c72d7ed19f1baadd6f3a4e47314f43b
- SHA256
  
  e39fad7d5cf0cb5addf715e73253bc8d5e45dd68cf50a720b80cf9bd524801ac
- SHA512
  
  1264cb317faa3867d24827066e4e14d8c7097b56a18386e6ab5e65ee34feb7476306fa4d383a01d72166e41b8d199c8299f3f0b34d19728b5dcac962ec984971
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYJG6:hDXWipuE+K3/SSHgxmw6
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2