83659742a26a291f12638c1c52c138f2a094bb97ba557cd0ca8d6242d92566df | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03bc124c1388fbe42b8141e9648fa8ac_JaffaCakes118
Size

7KB
Sample

240427-12tfcahh7s
MD5

03bc124c1388fbe42b8141e9648fa8ac
SHA1

6d6d47604c4b6edc92915357ccabc00c9540161b
SHA256

83659742a26a291f12638c1c52c138f2a094bb97ba557cd0ca8d6242d92566df
SHA512

442a211ffb15fc55ce5e311a5c2573761c12b234c2777baa0f2c462d869be8fa6ad864b9a87a11d5c38c461926bb1ec42b462a2b0467b297bbf65fc7e5add39b
SSDEEP

192:Ft5KFUnwR2ITIZLytatWn0NX0N9M9vuaaom:FFnwR2ITIUtaYkkN0W

Score

7^/10

Malware Config

Targets

- Target
  
  03bc124c1388fbe42b8141e9648fa8ac_JaffaCakes118
- Size
  
  7KB
- MD5
  
  03bc124c1388fbe42b8141e9648fa8ac
- SHA1
  
  6d6d47604c4b6edc92915357ccabc00c9540161b
- SHA256
  
  83659742a26a291f12638c1c52c138f2a094bb97ba557cd0ca8d6242d92566df
- SHA512
  
  442a211ffb15fc55ce5e311a5c2573761c12b234c2777baa0f2c462d869be8fa6ad864b9a87a11d5c38c461926bb1ec42b462a2b0467b297bbf65fc7e5add39b
- SSDEEP
  
  192:Ft5KFUnwR2ITIZLytatWn0NX0N9M9vuaaom:FFnwR2ITIUtaYkkN0W
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2