Overview

overview

7

Static

static

1

Parking_Re...oc.lnk

windows7-x64

3

Parking_Re...oc.lnk

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    2b16da5ef1b304416dd7b34660ae5021_JaffaCakes118

  • Size

    3KB

  • Sample

    240509-v5kpqaha84

  • MD5

    2b16da5ef1b304416dd7b34660ae5021

  • SHA1

    15829dddf0f6b54fb486b41f80b6ca7878300913

  • SHA256

    14a4f0e5233c00a8dcc1b1baf289d0017901dddba3953e473c7abfb69d955cb6

  • SHA512

    34ca9d71c037807cf8ef258ec6f4b5a1ec2cfbaca1e3928587d073595535418578a40f0a59258eecdf879266a145a6c84b7b08369ca1289e03c3ae4a10c99455

Score
7/10

Malware Config

Targets

    • Target

      Parking_Receipt_5.doc.lnk

    • Size

      9KB

    • MD5

      2ef37d3814879f5c1e57bbb61642e6f7

    • SHA1

      a8ead0c5e0b5e150f9f8945065e151434991123f

    • SHA256

      eb17b9b7a32be1e5056b599e859e3bf46b0c55fd7334775f5b3548f49a74d8ce

    • SHA512

      bbd46965cdf208d97fa2093f19d4eb1a05ebc4fff2885f9c75cbc345b7009ff30b6e3d8b2d14b3486aeda7be6c754946bdcec5b034db78888773933eff91b9a0

    • SSDEEP

      96:8Bdb3k4wk2houqRHMEA3ws/c1T0RdoyG37uv:8BRURhm2cs/cB0Tc3K

    Score
    7/10

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    behavioral1behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1
T1012

System Information Discovery

2
T1082

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks