62baa23fdd1efb4ee3a9f1266386fe777fbd01d564ba2f86940e55e7d48eed78 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

19125f5635602025789496ed90343a3c_JaffaCakes118
Size

2.5MB
Sample

240628-gzc6ssvekd
MD5

19125f5635602025789496ed90343a3c
SHA1

25d2a830a8b704356917773751327dc22ebe061b
SHA256

62baa23fdd1efb4ee3a9f1266386fe777fbd01d564ba2f86940e55e7d48eed78
SHA512

5757b60fe38629a3eb5a80534274123b7e77d563a2c7e01092ddc40e9b1bcd5889c562971c64f2ba45f494ca08993d166282ef61ad5afc45850fc4c8bb0cc085
SSDEEP

768:ToyzZ7iG6u4PtaGhgJ+VqQtKHPsd7MZe8PTSaSftJUJmJ1Ltpga:97JcaGhWSFKsd7MZe8POHfn/pga

Score

7^/10

Malware Config

Targets

- Target
  
  19125f5635602025789496ed90343a3c_JaffaCakes118
- Size
  
  2.5MB
- MD5
  
  19125f5635602025789496ed90343a3c
- SHA1
  
  25d2a830a8b704356917773751327dc22ebe061b
- SHA256
  
  62baa23fdd1efb4ee3a9f1266386fe777fbd01d564ba2f86940e55e7d48eed78
- SHA512
  
  5757b60fe38629a3eb5a80534274123b7e77d563a2c7e01092ddc40e9b1bcd5889c562971c64f2ba45f494ca08993d166282ef61ad5afc45850fc4c8bb0cc085
- SSDEEP
  
  768:ToyzZ7iG6u4PtaGhgJ+VqQtKHPsd7MZe8PTSaSftJUJmJ1Ltpga:97JcaGhWSFKsd7MZe8POHfn/pga
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2