44083476be745e420e7d6c7d286f38d128c7fc839881b060898305179728ef38 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fdf64b233b99240992a614dd6c1ec66e_JaffaCakes118
Size

240KB
Sample

240929-g6mc2ssfqm
MD5

fdf64b233b99240992a614dd6c1ec66e
SHA1

5d4bf66e1b4722accf03270f62e44da7aeb3c009
SHA256

44083476be745e420e7d6c7d286f38d128c7fc839881b060898305179728ef38
SHA512

3c382ecf75d4ee0e3f3f065cd8b66e7dfb3bea11ca86444b8c28577b1db58d1c1d5e3c22830fcaa22701b436a33bf2c18f169d837c0643755bec0057c87caa20
SSDEEP

6144:9ZyMeM8GKfnY3GCgc1Xz8FbCddDoxoec0aU4dW:9ZyMehG1cID8FbCddEaU4s

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fdf64b233b99240992a614dd6c1ec66e_JaffaCakes118
- Size
  
  240KB
- MD5
  
  fdf64b233b99240992a614dd6c1ec66e
- SHA1
  
  5d4bf66e1b4722accf03270f62e44da7aeb3c009
- SHA256
  
  44083476be745e420e7d6c7d286f38d128c7fc839881b060898305179728ef38
- SHA512
  
  3c382ecf75d4ee0e3f3f065cd8b66e7dfb3bea11ca86444b8c28577b1db58d1c1d5e3c22830fcaa22701b436a33bf2c18f169d837c0643755bec0057c87caa20
- SSDEEP
  
  6144:9ZyMeM8GKfnY3GCgc1Xz8FbCddDoxoec0aU4dW:9ZyMehG1cID8FbCddEaU4s
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2