622b52d1a17e2e7ab10ac5eedc9162d74db7a21a6e81d4a73e816d00a2a470b2 | Triage

Sharing

General

Target

fbb3581cd944df925cf0d8d913639673_JaffaCakes118
Size

282KB
Sample

240420-cnjrzsdg66
MD5

fbb3581cd944df925cf0d8d913639673
SHA1

9765ff07bcef53f33a9b4e5b23802667cf2a8fcf
SHA256

622b52d1a17e2e7ab10ac5eedc9162d74db7a21a6e81d4a73e816d00a2a470b2
SHA512

a07e566d367d80755657e16144a956031bee14cc3750fd05280729db30b6e482078566a29667c71efd201ef5dd0ccbab20e858c9fbff03a3d3c3b7c840085135
SSDEEP

3072:kFikAuXxoqcNIFeEkDmHu13loZqF0rbRU5SeVUlSFfQfjBZ541auUdkSFMsBIatH:8xohOkDrcMF0rveVU3ftVLFRUHRe1ky

Score

7^/10

Malware Config

Targets

- Target
  
  fbb3581cd944df925cf0d8d913639673_JaffaCakes118
- Size
  
  282KB
- MD5
  
  fbb3581cd944df925cf0d8d913639673
- SHA1
  
  9765ff07bcef53f33a9b4e5b23802667cf2a8fcf
- SHA256
  
  622b52d1a17e2e7ab10ac5eedc9162d74db7a21a6e81d4a73e816d00a2a470b2
- SHA512
  
  a07e566d367d80755657e16144a956031bee14cc3750fd05280729db30b6e482078566a29667c71efd201ef5dd0ccbab20e858c9fbff03a3d3c3b7c840085135
- SSDEEP
  
  3072:kFikAuXxoqcNIFeEkDmHu13loZqF0rbRU5SeVUlSFfQfjBZ541auUdkSFMsBIatH:8xohOkDrcMF0rveVU3ftVLFRUHRe1ky
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops startup file
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2