9b21f21eaa6123a652f06aaffa2a60fb0586473eaefe2fc4ee7ed2d1498592bf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

840d5b570df16e076f7533669853da34_JaffaCakes118
Size

869KB
Sample

240530-nggjtsfe4v
MD5

840d5b570df16e076f7533669853da34
SHA1

0736279763b48bdb22caeb00681deda5aa13b742
SHA256

9b21f21eaa6123a652f06aaffa2a60fb0586473eaefe2fc4ee7ed2d1498592bf
SHA512

545afbed2337f083702e5407e2bc37532fd206fd5e0cbf57596a0416073d37d9e11465d9bc0f2cf1a10678311a392753ce880883469abe1c3e7c8780a2c52887
SSDEEP

24576:XtAVdCVjyZWqgJHCagpg8kgLsXIZJnNaruRGg09T:X24Qrgipg8DsIZJN8gGgMT

Score

7^/10

Malware Config

Targets

- Target
  
  840d5b570df16e076f7533669853da34_JaffaCakes118
- Size
  
  869KB
- MD5
  
  840d5b570df16e076f7533669853da34
- SHA1
  
  0736279763b48bdb22caeb00681deda5aa13b742
- SHA256
  
  9b21f21eaa6123a652f06aaffa2a60fb0586473eaefe2fc4ee7ed2d1498592bf
- SHA512
  
  545afbed2337f083702e5407e2bc37532fd206fd5e0cbf57596a0416073d37d9e11465d9bc0f2cf1a10678311a392753ce880883469abe1c3e7c8780a2c52887
- SSDEEP
  
  24576:XtAVdCVjyZWqgJHCagpg8kgLsXIZJnNaruRGg09T:X24Qrgipg8DsIZJN8gGgMT
Score

5^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2
- Target
  
  $PLUGINSDIR/StdUtils.dll
- Size
  
  14KB
- MD5
  
  21010df9bc37daffcc0b5ae190381d85
- SHA1
  
  a8ba022aafc1233894db29e40e569dfc8b280eb9
- SHA256
  
  0ebd62de633fa108cf18139be6778fa560680f9f8a755e41c6ab544ab8db5c16
- SHA512
  
  95d3dbba6eac144260d5fcc7fcd5fb3afcb59ae62bd2eafc5a1d2190e9b44f8e125290d62fef82ad8799d0072997c57b2fa8a643aba554d0a82bbd3f8eb1403e
- SSDEEP
  
  192:OFb8Y8oqy2mqZc9hGBQHRx39oRxmMvURkB/Fs:qb8Y8nKqohGBKxox9vURw/a
Score

3^/10
behavioral3 behavioral4
- Target
  
  $_3_
- Size
  
  1.8MB
- MD5
  
  c5ea500e55b0180498307ec867679a7e
- SHA1
  
  715fd28aa69ac4efc5935cb2407a6f9fd9ac020d
- SHA256
  
  da094f5a1fe8a93e729791368bb050ee3b8474773155e79fd08acfc7585d9b92
- SHA512
  
  71daf1111e4278ac294c8e1e095944d240be86ebcd385546255bb05f766d998b88634f2f8fadd53f67bd1066f84e850323fc1d35e6bc28be22bd7ed70ac0286c
- SSDEEP
  
  49152:9c4u49CbNSFXVJUtSH9zaTRpSWabzjQWLtm5YXldd:9z4GFJUtYfb
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral5 behavioral6

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2

behavioral3

behavioral4

behavioral5

behavioral6