General

  • Target

    a1b6021c47b54d7f0bd9f29c95286c97_JaffaCakes118

  • Size

    184KB

  • Sample

    240612-wyytfaydnm

  • MD5

    a1b6021c47b54d7f0bd9f29c95286c97

  • SHA1

    2439b4102ccb0113a13a103ffcea5c73e6b0bfce

  • SHA256

    3ab08c494a01c9a590f3c868e6493f99c848c2896184db3f8d162322e48d7fef

  • SHA512

    83f85dac44664404da444e92870f068c9250bf808cda4cf83e0d839652494a4922ca8af00e0a295f04ac910f292dec412eab81e329dc6c4f9baf82c0e28d2376

  • SSDEEP

    3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3Q:/7BSH8zUB+nGESaaRvoB7FJNndn9

Score
8/10

Malware Config

Targets

    • Target

      a1b6021c47b54d7f0bd9f29c95286c97_JaffaCakes118

    • Size

      184KB

    • MD5

      a1b6021c47b54d7f0bd9f29c95286c97

    • SHA1

      2439b4102ccb0113a13a103ffcea5c73e6b0bfce

    • SHA256

      3ab08c494a01c9a590f3c868e6493f99c848c2896184db3f8d162322e48d7fef

    • SHA512

      83f85dac44664404da444e92870f068c9250bf808cda4cf83e0d839652494a4922ca8af00e0a295f04ac910f292dec412eab81e329dc6c4f9baf82c0e28d2376

    • SSDEEP

      3072:/MzsU0S0w8Hp9Rc/LB+dJGESR4hIRSYaVvb1NVFJNndnO3Q:/7BSH8zUB+nGESaaRvoB7FJNndn9

    Score
    8/10
    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

MITRE ATT&CK Enterprise v15

Tasks