1a6f5763209e0cd737187f67512d802d230ba4b99e3ff138e9239e9c061c1500 | Triage

Sharing

General

Target

03bdd677a29b5a54629f5556ccf0bd8a_JaffaCakes118
Size

1.5MB
Sample

240427-14ysvahf54
MD5

03bdd677a29b5a54629f5556ccf0bd8a
SHA1

0405fcb4e5d38df434442d9f7c911b44ee9840c0
SHA256

1a6f5763209e0cd737187f67512d802d230ba4b99e3ff138e9239e9c061c1500
SHA512

59d6c2ac864af6c1cba092105c93297707503a354e2d5e2aab3c744afc0ad7f30cb72be7aba2f82f1f4a54964639b7dd0abd4dd5016e557bc09afb9a391bca2a
SSDEEP

24576:IKN3qU44VnMqFMygvWgQBQSRWxq0VJHTo6FaTLbI2ZqaIvuVnXN:I06Mw6ySYqQk6FaTXIGq969

Score

7^/10

Malware Config

Targets

- Target
  
  03bdd677a29b5a54629f5556ccf0bd8a_JaffaCakes118
- Size
  
  1.5MB
- MD5
  
  03bdd677a29b5a54629f5556ccf0bd8a
- SHA1
  
  0405fcb4e5d38df434442d9f7c911b44ee9840c0
- SHA256
  
  1a6f5763209e0cd737187f67512d802d230ba4b99e3ff138e9239e9c061c1500
- SHA512
  
  59d6c2ac864af6c1cba092105c93297707503a354e2d5e2aab3c744afc0ad7f30cb72be7aba2f82f1f4a54964639b7dd0abd4dd5016e557bc09afb9a391bca2a
- SSDEEP
  
  24576:IKN3qU44VnMqFMygvWgQBQSRWxq0VJHTo6FaTLbI2ZqaIvuVnXN:I06Mw6ySYqQk6FaTXIGq969
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2