0fd2f07c66c72bf4e2cf3e696d6df557bbcce9799fa6f70fa0064cec8d8f538c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

213bee731c8b5427bc810263c77cfae1_JaffaCakes118
Size

938KB
Sample

240703-f7hwkstdkq
MD5

213bee731c8b5427bc810263c77cfae1
SHA1

03b0075b0fd571d07fc112b3f4d4ccd0024a6e48
SHA256

0fd2f07c66c72bf4e2cf3e696d6df557bbcce9799fa6f70fa0064cec8d8f538c
SHA512

95b717b55eb7c14deca14ab14c923b77e58967bdd83ff84f11ca678c69f28a2eb0ae6a99f24bc55d659766eab458ba3eb71f9679724563615cd41c4a020be99b
SSDEEP

24576:zmZHGnNYczuLYpDdWmDwXcYMvQhzOTIl/Q:OsOrytDKMvQKTR

Score

7^/10

Malware Config

Targets

- Target
  
  213bee731c8b5427bc810263c77cfae1_JaffaCakes118
- Size
  
  938KB
- MD5
  
  213bee731c8b5427bc810263c77cfae1
- SHA1
  
  03b0075b0fd571d07fc112b3f4d4ccd0024a6e48
- SHA256
  
  0fd2f07c66c72bf4e2cf3e696d6df557bbcce9799fa6f70fa0064cec8d8f538c
- SHA512
  
  95b717b55eb7c14deca14ab14c923b77e58967bdd83ff84f11ca678c69f28a2eb0ae6a99f24bc55d659766eab458ba3eb71f9679724563615cd41c4a020be99b
- SSDEEP
  
  24576:zmZHGnNYczuLYpDdWmDwXcYMvQhzOTIl/Q:OsOrytDKMvQKTR
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2