05c6b19f1a46a6809f217190a494263a665b6958bc0131dae2def938cfc37177 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

ebdb0f5bb401a07be1457b0cd80805ae_JaffaCakes118
Size

359KB
Sample

240410-yh59pada3w
MD5

ebdb0f5bb401a07be1457b0cd80805ae
SHA1

3692d1f952b199fab9d7ca81045f0c4cf07f6608
SHA256

05c6b19f1a46a6809f217190a494263a665b6958bc0131dae2def938cfc37177
SHA512

aaacf577f54d3c302f687e7aa9dc77de453ae8da6ef0a613ea141bd22bcc02e100568331f6f73e177ff2862739a8ef5f941dec5969accbb9789433af76707862
SSDEEP

6144:6BGq8hGSLhlMcLxvH2VRL0MQU30pyMi0bMySfsVm2dq:KKHTMc1vH2VZ0MQUWg0D/q

Score

7^/10

Malware Config

Targets

- Target
  
  ebdb0f5bb401a07be1457b0cd80805ae_JaffaCakes118
- Size
  
  359KB
- MD5
  
  ebdb0f5bb401a07be1457b0cd80805ae
- SHA1
  
  3692d1f952b199fab9d7ca81045f0c4cf07f6608
- SHA256
  
  05c6b19f1a46a6809f217190a494263a665b6958bc0131dae2def938cfc37177
- SHA512
  
  aaacf577f54d3c302f687e7aa9dc77de453ae8da6ef0a613ea141bd22bcc02e100568331f6f73e177ff2862739a8ef5f941dec5969accbb9789433af76707862
- SSDEEP
  
  6144:6BGq8hGSLhlMcLxvH2VRL0MQU30pyMi0bMySfsVm2dq:KKHTMc1vH2VZ0MQUWg0D/q
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2