General

  • Target

    057b0ff5d4a3f5bc609ae25ed600639b_JaffaCakes118

  • Size

    181KB

  • Sample

    240623-hs6efaxckr

  • MD5

    057b0ff5d4a3f5bc609ae25ed600639b

  • SHA1

    baa579e056eb4d706f15bbf000d41d20c9ca8644

  • SHA256

    6579e3baca4c0102ceceaeedb17b6ed7780d9f946234e8000b2a9291ed0f030b

  • SHA512

    f7c247adbaad7c96db1a652ff5facfb9cce3e0fac45bf726b52204e151389d164a7642c51967c7ae698545f9b6f6674129c9f91fdcf8223d7e361361e826d328

  • SSDEEP

    3072:WPuqgY7800fLj6jFz11cCRJD14eaCbrzJtuJ+jRY9yQbdj6+a0IUQXMmq4:WPjxw0ganmC7D14etFt3aIQZjElhMP4

Score
7/10

Malware Config

Targets

    • Target

      057b0ff5d4a3f5bc609ae25ed600639b_JaffaCakes118

    • Size

      181KB

    • MD5

      057b0ff5d4a3f5bc609ae25ed600639b

    • SHA1

      baa579e056eb4d706f15bbf000d41d20c9ca8644

    • SHA256

      6579e3baca4c0102ceceaeedb17b6ed7780d9f946234e8000b2a9291ed0f030b

    • SHA512

      f7c247adbaad7c96db1a652ff5facfb9cce3e0fac45bf726b52204e151389d164a7642c51967c7ae698545f9b6f6674129c9f91fdcf8223d7e361361e826d328

    • SSDEEP

      3072:WPuqgY7800fLj6jFz11cCRJD14eaCbrzJtuJ+jRY9yQbdj6+a0IUQXMmq4:WPjxw0ganmC7D14etFt3aIQZjElhMP4

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Drops startup file

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks