bb10a63a4ab27cdc2fb9e9a2a9266ef635fe8c8856e14006033c64db50d9300b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2ddd9a64e45a5782a5883f675cb9c8e8_JaffaCakes118
Size

485KB
Sample

240708-1bvkqasckc
MD5

2ddd9a64e45a5782a5883f675cb9c8e8
SHA1

f82463d3c4266b68a9e1f2ef09a10dc52b50f03e
SHA256

bb10a63a4ab27cdc2fb9e9a2a9266ef635fe8c8856e14006033c64db50d9300b
SHA512

9ab5387ac6268b90ad4e7a19e6bbe1f6311aa823b635e034b701e687c8cfdbb228d7232263c7173694a072d86e3471d2d1e3327e15a240ffa4439dee4211504b
SSDEEP

12288:Y5On5ZbIsaL6iRc1hw7V3jRb0Bv9FVNnVfyu:YIn8s+6i8eV1GPV5Byu

Score

7^/10

Malware Config

Targets

- Target
  
  2ddd9a64e45a5782a5883f675cb9c8e8_JaffaCakes118
- Size
  
  485KB
- MD5
  
  2ddd9a64e45a5782a5883f675cb9c8e8
- SHA1
  
  f82463d3c4266b68a9e1f2ef09a10dc52b50f03e
- SHA256
  
  bb10a63a4ab27cdc2fb9e9a2a9266ef635fe8c8856e14006033c64db50d9300b
- SHA512
  
  9ab5387ac6268b90ad4e7a19e6bbe1f6311aa823b635e034b701e687c8cfdbb228d7232263c7173694a072d86e3471d2d1e3327e15a240ffa4439dee4211504b
- SSDEEP
  
  12288:Y5On5ZbIsaL6iRc1hw7V3jRb0Bv9FVNnVfyu:YIn8s+6i8eV1GPV5Byu
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2