8d437724ac136ad89b3dfa89cefe077e9016cec59e4c6475a93bee3a419ff8f8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0e5c05933631c0c1f9c54bb1c48e5686_JaffaCakes118
Size

99KB
Sample

240625-rfekmaxcrk
MD5

0e5c05933631c0c1f9c54bb1c48e5686
SHA1

074b9aa3537864c3481ed9ea6029653c64472df6
SHA256

8d437724ac136ad89b3dfa89cefe077e9016cec59e4c6475a93bee3a419ff8f8
SHA512

94e91ae8eabe55616bebd2647004af8c041edb50c405a05a7c28900f93bb80dbd057961da1fb17b05f6330515888d8c55ea1885743b58f938942dca8146eac8d
SSDEEP

1536:EJlwldZwdjTEo9cfWxfxHm9tYLiNqEWINp3+erhRhggt7FZ4BUbqdj:EJlwmjTsfWpRktYLiNqEWarNggBFGNx

Score

7^/10

aspackv2

Malware Config

Targets

- Target
  
  0e5c05933631c0c1f9c54bb1c48e5686_JaffaCakes118
- Size
  
  99KB
- MD5
  
  0e5c05933631c0c1f9c54bb1c48e5686
- SHA1
  
  074b9aa3537864c3481ed9ea6029653c64472df6
- SHA256
  
  8d437724ac136ad89b3dfa89cefe077e9016cec59e4c6475a93bee3a419ff8f8
- SHA512
  
  94e91ae8eabe55616bebd2647004af8c041edb50c405a05a7c28900f93bb80dbd057961da1fb17b05f6330515888d8c55ea1885743b58f938942dca8146eac8d
- SSDEEP
  
  1536:EJlwldZwdjTEo9cfWxfxHm9tYLiNqEWINp3+erhRhggt7FZ4BUbqdj:EJlwmjTsfWpRktYLiNqEWarNggBFGNx
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2