8581dee0c6161056c182d528e6a07c28ee77d3bc372733055c8a257677099dcf | Triage

Sharing

General

Target

345178b7b39cc1ed9c3207feee3eb96c_JaffaCakes118
Size

184KB
Sample

240511-ndj6jsgg24
MD5

345178b7b39cc1ed9c3207feee3eb96c
SHA1

ae064f76eaf59538267adbacf38f5116783ed2cb
SHA256

8581dee0c6161056c182d528e6a07c28ee77d3bc372733055c8a257677099dcf
SHA512

72034603aba9ab74635060d4aa20a6d66b6350f0fbd11998d455e6b8a772a8ec824dfed28f36ccf96fba11d785460daa5724ba2bfcf2a3641939dd4c065faff8
SSDEEP

3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO37:/7BSH8zUB+nGESaaRvoB7FJNndnq

Score

8^/10

execution

Malware Config

Targets

- Target
  
  345178b7b39cc1ed9c3207feee3eb96c_JaffaCakes118
- Size
  
  184KB
- MD5
  
  345178b7b39cc1ed9c3207feee3eb96c
- SHA1
  
  ae064f76eaf59538267adbacf38f5116783ed2cb
- SHA256
  
  8581dee0c6161056c182d528e6a07c28ee77d3bc372733055c8a257677099dcf
- SHA512
  
  72034603aba9ab74635060d4aa20a6d66b6350f0fbd11998d455e6b8a772a8ec824dfed28f36ccf96fba11d785460daa5724ba2bfcf2a3641939dd4c065faff8
- SSDEEP
  
  3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO37:/7BSH8zUB+nGESaaRvoB7FJNndnq
Score

8^/10

execution
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2