d63a39fa05b4ec7720852ed01d2a90b141f7dfbe14bb5028bff8c47e97219044 | Triage

Sharing

General

Target

e8b920efcfefdb52cc7d8e384693b083_JaffaCakes118
Size

789KB
Sample

240408-3tadlsag8y
MD5

e8b920efcfefdb52cc7d8e384693b083
SHA1

bbe7d5e7c14f0ae011849d2abd96ef31a1099268
SHA256

d63a39fa05b4ec7720852ed01d2a90b141f7dfbe14bb5028bff8c47e97219044
SHA512

5798f40e8ef1561f806baa3106a0d0b47001813a868dfddc2cc002711663b8240092f563c7fed783ef8c21dd06d0a0b5487287cfd4ff1c28bc56e697eea5a0ab
SSDEEP

12288:BtobbXN42nHq+EgqfRAUEcB3gOE6DZlZUXavlXluE70pFdZigcyrG4EEu441OM:Bt8RHjEgYAw1hZlZTWQu7igcyKPEujIM

Score

5^/10

Malware Config

Targets

- Target
  
  e8b920efcfefdb52cc7d8e384693b083_JaffaCakes118
- Size
  
  789KB
- MD5
  
  e8b920efcfefdb52cc7d8e384693b083
- SHA1
  
  bbe7d5e7c14f0ae011849d2abd96ef31a1099268
- SHA256
  
  d63a39fa05b4ec7720852ed01d2a90b141f7dfbe14bb5028bff8c47e97219044
- SHA512
  
  5798f40e8ef1561f806baa3106a0d0b47001813a868dfddc2cc002711663b8240092f563c7fed783ef8c21dd06d0a0b5487287cfd4ff1c28bc56e697eea5a0ab
- SSDEEP
  
  12288:BtobbXN42nHq+EgqfRAUEcB3gOE6DZlZUXavlXluE70pFdZigcyrG4EEu441OM:Bt8RHjEgYAw1hZlZTWQu7igcyKPEujIM
Score

5^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/StdUtils.dll
- Size
  
  14KB
- MD5
  
  21010df9bc37daffcc0b5ae190381d85
- SHA1
  
  a8ba022aafc1233894db29e40e569dfc8b280eb9
- SHA256
  
  0ebd62de633fa108cf18139be6778fa560680f9f8a755e41c6ab544ab8db5c16
- SHA512
  
  95d3dbba6eac144260d5fcc7fcd5fb3afcb59ae62bd2eafc5a1d2190e9b44f8e125290d62fef82ad8799d0072997c57b2fa8a643aba554d0a82bbd3f8eb1403e
- SSDEEP
  
  192:OFb8Y8oqy2mqZc9hGBQHRx39oRxmMvURkB/Fs:qb8Y8nKqohGBKxox9vURw/a
Score

3^/10
behavioral3 behavioral4
- Target
  
  $_3_
- Size
  
  1.8MB
- MD5
  
  9ab5db4bb5971035b4d287d64f9676b5
- SHA1
  
  33d17f016339572dd05c124d6243fffefd0cd039
- SHA256
  
  f2126481c02d2a5af29e56023902a0897d05867c1caaf8079cf6e1f05dd9b209
- SHA512
  
  d36262fdd4d8bd083d8537f0698c423240c9e42b2dc0048e2470d87411f295d6e3428587b76b0486875495d502f1f31f9edf3eb6fdb914f13421b7f29fa5f066
- SSDEEP
  
  49152:G0BIrT/YNRoLlps7tZokvTopSdmX4Foni7iMmdc:GbTRps7Xj
Score

5^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6