21725ddd2fb136dbab48fd2e34416baef96101c11394b4498f3aa53f96a06029 | Triage

Sharing

General

Target

347fabf6e4c6acaed907399cc17718ef_JaffaCakes118
Size

184KB
Sample

240511-n9j6esfb8y
MD5

347fabf6e4c6acaed907399cc17718ef
SHA1

8f678552dddda116534b01c9fb615b37c47f00df
SHA256

21725ddd2fb136dbab48fd2e34416baef96101c11394b4498f3aa53f96a06029
SHA512

ce3701a7680ad70bb413c31dbfae36a1a210cd58e8053b032b224c04e93b9c782f0581c1eb5b201ad1b2de4bfe9f06d110b2c969b62be46cfc3cb0ed890c9048
SSDEEP

3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3C:/7BSH8zUB+nGESaaRvoB7FJNndnX

Score

8^/10

execution

Malware Config

Targets

- Target
  
  347fabf6e4c6acaed907399cc17718ef_JaffaCakes118
- Size
  
  184KB
- MD5
  
  347fabf6e4c6acaed907399cc17718ef
- SHA1
  
  8f678552dddda116534b01c9fb615b37c47f00df
- SHA256
  
  21725ddd2fb136dbab48fd2e34416baef96101c11394b4498f3aa53f96a06029
- SHA512
  
  ce3701a7680ad70bb413c31dbfae36a1a210cd58e8053b032b224c04e93b9c782f0581c1eb5b201ad1b2de4bfe9f06d110b2c969b62be46cfc3cb0ed890c9048
- SSDEEP
  
  3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3C:/7BSH8zUB+nGESaaRvoB7FJNndnX
Score

8^/10

execution
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2