0617c3e53586b83797e4209ea9cd6bc8b2e39c8da70b5b403c6dde22f9fd1d28 | Triage

Sharing

General

Target

6949d39028a251a4b60ce83b95f6e68d_JaffaCakes118
Size

18KB
Sample

240523-bv7a7agf2z
MD5

6949d39028a251a4b60ce83b95f6e68d
SHA1

ea8b8a3cc26b6ad2cda63114f73faf698cae473f
SHA256

0617c3e53586b83797e4209ea9cd6bc8b2e39c8da70b5b403c6dde22f9fd1d28
SHA512

8302fbbc445acefde4abc2dec6c3ae8b3a861c58ca2e2c1fefe73bfde21ea16c5efa71c1de60394dcc2db47a64b485e8ba3534a0e3865a974c92abb56bca63fb
SSDEEP

384:RhPYi9Q6S0KwVDcziaNFjPRvTAY2I5gpJi68LIKrXNHn:si9Qv8oOoPRcbTihLtpn

Score

7^/10

Malware Config

Targets

- Target
  
  Aventia_AS_002600.vbs
- Size
  
  73KB
- MD5
  
  453e9aaf18526533a0f039baeaa79082
- SHA1
  
  b189a02057f6b1457f5dc83f2d58ed4fb0fa3372
- SHA256
  
  bf55c23767ad3981da15d4789452b9738b018e840de160697b754d49e2853761
- SHA512
  
  5c1d2e33fe95a10bc6ee7aa89fe932f976b96bcd7d93cb98af2c24a6b15b5f1a14a4346458310071ce47d340ccb51214a3868b846c62667dbba165b01c96d285
- SSDEEP
  
  1536:raCCZDbSV8CeDYUrTqgNQSGu7PEkvbGLSOSGn4tqabynRkbY/Mu4SbfIkaktmjfo:GN6V8CeDYUrTqqQSGu7PEkvbGLSOSGnl
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2