0fda5b063f5dc9e57fb21810d24ede4874b6159c46dd00cc144faa3e53830f3d | Triage

Sharing

General

Target

82dd23568d5b57814fe72cb668ceab2e_JaffaCakes118
Size

184KB
Sample

240530-dq9a4add46
MD5

82dd23568d5b57814fe72cb668ceab2e
SHA1

6e489495edcd4301d5fe62392c7cf28f995ddc99
SHA256

0fda5b063f5dc9e57fb21810d24ede4874b6159c46dd00cc144faa3e53830f3d
SHA512

8444783daa2ea0fa060ae92470958d8f5f7c7bab0398a6df0e3617400915f10345ed00487f359008a6d2feb5008d2a5f35a6cd469f6f77a3620fbd110341b36c
SSDEEP

3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3U:/7BSH8zUB+nGESaaRvoB7FJNndnB

Score

8^/10

execution

Malware Config

Targets

- Target
  
  82dd23568d5b57814fe72cb668ceab2e_JaffaCakes118
- Size
  
  184KB
- MD5
  
  82dd23568d5b57814fe72cb668ceab2e
- SHA1
  
  6e489495edcd4301d5fe62392c7cf28f995ddc99
- SHA256
  
  0fda5b063f5dc9e57fb21810d24ede4874b6159c46dd00cc144faa3e53830f3d
- SHA512
  
  8444783daa2ea0fa060ae92470958d8f5f7c7bab0398a6df0e3617400915f10345ed00487f359008a6d2feb5008d2a5f35a6cd469f6f77a3620fbd110341b36c
- SSDEEP
  
  3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3U:/7BSH8zUB+nGESaaRvoB7FJNndnB
Score

8^/10

execution
- Blocklisted process makes network request
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2