93b72cfacb6d8830d67d36633cc082b46d8369a814abb50d1b6901631b6fe433 | Triage

Sharing

General

Target

7b90883639a53ba78eef7aadaa09cfc2_JaffaCakes118
Size

184KB
Sample

240528-d69xkadd2w
MD5

7b90883639a53ba78eef7aadaa09cfc2
SHA1

81210a51358323834fe571e0c386420104761cf8
SHA256

93b72cfacb6d8830d67d36633cc082b46d8369a814abb50d1b6901631b6fe433
SHA512

9f8fffbc2e08f35b519c359dfe546f7d861ac6ad2f3cefa2236f89f7d9c1dd73f688eb0a3fb871ed761c124efada7869f9aaa5f49b46c9cc78ac378e0918c55e
SSDEEP

3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3a:/7BSH8zUB+nGESaaRvoB7FJNndn7

Score

8^/10

execution

Malware Config

Targets

- Target
  
  7b90883639a53ba78eef7aadaa09cfc2_JaffaCakes118
- Size
  
  184KB
- MD5
  
  7b90883639a53ba78eef7aadaa09cfc2
- SHA1
  
  81210a51358323834fe571e0c386420104761cf8
- SHA256
  
  93b72cfacb6d8830d67d36633cc082b46d8369a814abb50d1b6901631b6fe433
- SHA512
  
  9f8fffbc2e08f35b519c359dfe546f7d861ac6ad2f3cefa2236f89f7d9c1dd73f688eb0a3fb871ed761c124efada7869f9aaa5f49b46c9cc78ac378e0918c55e
- SSDEEP
  
  3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3a:/7BSH8zUB+nGESaaRvoB7FJNndn7
Score

8^/10

execution
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2