d0fcb3ab037ccd53bbbb3f5370db222c23f894e174fb7142bd6951edec7108f8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

03ba5bfd3b6e220e826a3734d86d496c_JaffaCakes118
Size

208KB
Sample

240620-hgdv2syerj
MD5

03ba5bfd3b6e220e826a3734d86d496c
SHA1

8e40f2c6fb10f9a5b4df2ab01d87317cfd5047e1
SHA256

d0fcb3ab037ccd53bbbb3f5370db222c23f894e174fb7142bd6951edec7108f8
SHA512

ea8a2850be048365a1ea47c448406f60fe570b395e4186dfbb0e08ff7d1c2d58c111744d3a143b58ca7281562e22aadc0a4e8170a58d87ad18cbdbc80c37a543
SSDEEP

6144:FqjHjqCVXidWqaYHbLM+o4DG0u4t8n9ib:FCuiiiYS4id5na

Score

7^/10

Malware Config

Targets

- Target
  
  03ba5bfd3b6e220e826a3734d86d496c_JaffaCakes118
- Size
  
  208KB
- MD5
  
  03ba5bfd3b6e220e826a3734d86d496c
- SHA1
  
  8e40f2c6fb10f9a5b4df2ab01d87317cfd5047e1
- SHA256
  
  d0fcb3ab037ccd53bbbb3f5370db222c23f894e174fb7142bd6951edec7108f8
- SHA512
  
  ea8a2850be048365a1ea47c448406f60fe570b395e4186dfbb0e08ff7d1c2d58c111744d3a143b58ca7281562e22aadc0a4e8170a58d87ad18cbdbc80c37a543
- SSDEEP
  
  6144:FqjHjqCVXidWqaYHbLM+o4DG0u4t8n9ib:FCuiiiYS4id5na
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2