84f76337b03dac2016bc85a05c743b576900d6293fc6e39002bb899fe8ea8e58 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

220ba5400c6bac92826159c5c401f026_JaffaCakes118
Size

15KB
Sample

240329-pqanbahd56
MD5

220ba5400c6bac92826159c5c401f026
SHA1

895633e5053dbcdfef0d0e84723e6a52b9b606c1
SHA256

84f76337b03dac2016bc85a05c743b576900d6293fc6e39002bb899fe8ea8e58
SHA512

f9f710adeb911aae335c4bf574c02e6b2e4935057900e31874fd1283c4aefced6c930014348e5174e6b81beda0eac5df59cc6a24b6657939149171a66063b801
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh4cn/P:hDXWipuE+K3/SSHgx//P

Score

7^/10

Malware Config

Targets

- Target
  
  220ba5400c6bac92826159c5c401f026_JaffaCakes118
- Size
  
  15KB
- MD5
  
  220ba5400c6bac92826159c5c401f026
- SHA1
  
  895633e5053dbcdfef0d0e84723e6a52b9b606c1
- SHA256
  
  84f76337b03dac2016bc85a05c743b576900d6293fc6e39002bb899fe8ea8e58
- SHA512
  
  f9f710adeb911aae335c4bf574c02e6b2e4935057900e31874fd1283c4aefced6c930014348e5174e6b81beda0eac5df59cc6a24b6657939149171a66063b801
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yh4cn/P:hDXWipuE+K3/SSHgx//P
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2