3087a49ee00c676f76746b681444283de011cb1e969479e5b6c80ae4e439d835 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

e7b33ffa544051b7d31cc653d2fc0d76_JaffaCakes118
Size

4.8MB
Sample

240408-r2t77sbf29
MD5

e7b33ffa544051b7d31cc653d2fc0d76
SHA1

3ab454a150948b61f232291963d1a855aca26b06
SHA256

3087a49ee00c676f76746b681444283de011cb1e969479e5b6c80ae4e439d835
SHA512

6daf71ce4b0b34cc0c14d5638d575fe6c1fba3d9b4ae1e06e122dfbf5e02d464329a01d48134f525bc5addd37d436f98176e007b343e1a706a237952faa1f038
SSDEEP

98304:VodKpHLgjMSC32D0DVHqJOjpsTmoxk5FQ0PaLiHrxROseGJ7Lap:VaK9kO2YVHqJwYxMFQqLvOHGJ4

Score

7^/10

Malware Config

Targets

- Target
  
  bmg.exe
- Size
  
  4.9MB
- MD5
  
  f437597446440f98123fa4b75e011049
- SHA1
  
  4a81f3fe8e33ec3e26ef97175f4340fc93d83541
- SHA256
  
  c9a3d9542ff7c2ba4dfeeaa2370580e1ddc5480061e965df1044d150575a61ad
- SHA512
  
  7b4d0ac3cfd21809c1e4c8557879c60437874a40052c8d1c5ef5b899cfb5d12b6fc191c3bb75736f99742b10fd121e78c2e08be5307284a5de2612f0357c9d8b
- SSDEEP
  
  98304:LguOEYu2DgbzZW92o41w1sDpl0beJ/GTqoRYTbgWPA9iopywWwJlDip:EEY5gRCIwwpl0bowR4bgR3pydw34
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2