b01135bf953dd5f2bc912a144be4487165e6befd5bd43e6ca43bc6a2193cd98e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

931e683a02b643a89f3eef8f0df4f1db_JaffaCakes118
Size

1.2MB
Sample

240604-ap9zfsfd52
MD5

931e683a02b643a89f3eef8f0df4f1db
SHA1

67dbb29157dce87b3ec215ac8adfb9f9172f9d73
SHA256

b01135bf953dd5f2bc912a144be4487165e6befd5bd43e6ca43bc6a2193cd98e
SHA512

559230f1f04c0e27be53099dfedbe4267c0a260ca033d9b93ea8277970e5ee71e59446d17dc54c67537db6ea34c54eab8b96e74b57ba9385d64c4cdc4653dd5c
SSDEEP

24576:InJ685p8VP3OaKS5RpQgNO+gJlS9RKQ2ehB1m+7CAW173:IJ685p8teS5rQr+HpXhDmqCAc73

Score

7^/10

Malware Config

Targets

- Target
  
  931e683a02b643a89f3eef8f0df4f1db_JaffaCakes118
- Size
  
  1.2MB
- MD5
  
  931e683a02b643a89f3eef8f0df4f1db
- SHA1
  
  67dbb29157dce87b3ec215ac8adfb9f9172f9d73
- SHA256
  
  b01135bf953dd5f2bc912a144be4487165e6befd5bd43e6ca43bc6a2193cd98e
- SHA512
  
  559230f1f04c0e27be53099dfedbe4267c0a260ca033d9b93ea8277970e5ee71e59446d17dc54c67537db6ea34c54eab8b96e74b57ba9385d64c4cdc4653dd5c
- SSDEEP
  
  24576:InJ685p8VP3OaKS5RpQgNO+gJlS9RKQ2ehB1m+7CAW173:IJ685p8teS5rQr+HpXhDmqCAc73
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2