e9aa06b07aad5f1efd26693c7b7d09977990e18f47190e0b0e91b7200bc61bfb | Triage

Sharing

Copy URL Twitter E-mail

General

Target

10125639d6ac205e8e3f3c232f067f72_JaffaCakes118
Size

380KB
Sample

240626-anp8navhkm
MD5

10125639d6ac205e8e3f3c232f067f72
SHA1

886e25c2c2b5a719ca97ef93bb850afa85891357
SHA256

e9aa06b07aad5f1efd26693c7b7d09977990e18f47190e0b0e91b7200bc61bfb
SHA512

a890466f42050e5d0ccec298eacc52fd41a56ab8beded67e6267c14ee46aa8242995ec3470a2c37e7b8e6087aac4a2ae5e7109891c3c57a6e632ffa527f423a0
SSDEEP

6144:jHmzMe3ZKpplTrUFaEnuKlJD2qhiVrBDPi87DxmLX2xq5otuBNukc1pp1NN5eQQl:bGZpgKaEnuylEK877qGcHIeVeAB9

Score

7^/10

Malware Config

Targets

- Target
  
  10125639d6ac205e8e3f3c232f067f72_JaffaCakes118
- Size
  
  380KB
- MD5
  
  10125639d6ac205e8e3f3c232f067f72
- SHA1
  
  886e25c2c2b5a719ca97ef93bb850afa85891357
- SHA256
  
  e9aa06b07aad5f1efd26693c7b7d09977990e18f47190e0b0e91b7200bc61bfb
- SHA512
  
  a890466f42050e5d0ccec298eacc52fd41a56ab8beded67e6267c14ee46aa8242995ec3470a2c37e7b8e6087aac4a2ae5e7109891c3c57a6e632ffa527f423a0
- SSDEEP
  
  6144:jHmzMe3ZKpplTrUFaEnuKlJD2qhiVrBDPi87DxmLX2xq5otuBNukc1pp1NN5eQQl:bGZpgKaEnuylEK877qGcHIeVeAB9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2