028575ff56abc6babc165ee7089a506fb48bcfba3c796350dc2b353fbb19b99a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3d02a8825e22cadbdc22a23b1a6ac0b0_JaffaCakes118
Size

41KB
Sample

240712-mj3dms1hmg
MD5

3d02a8825e22cadbdc22a23b1a6ac0b0
SHA1

98573fa90b3152ba25424739e2cb8d4f9be81ee5
SHA256

028575ff56abc6babc165ee7089a506fb48bcfba3c796350dc2b353fbb19b99a
SHA512

3a0c600a5e0a23fa9a8cf53238dc1a851ec2f4e916ac86f04a7345e05a5b4aaf860d1ea1483dea4841b8e6c8a1c58868f1c6979b407d9cd4a0a0b6f80d9651ed
SSDEEP

768:QIBar1ZIZYnfI9opm6AIHIjaI7g9mVmUnUoNE/W5dRV8:pW1ZIZqI9opm6AIHIjzmUdNzd

Score

7^/10

Malware Config

Targets

- Target
  
  3d02a8825e22cadbdc22a23b1a6ac0b0_JaffaCakes118
- Size
  
  41KB
- MD5
  
  3d02a8825e22cadbdc22a23b1a6ac0b0
- SHA1
  
  98573fa90b3152ba25424739e2cb8d4f9be81ee5
- SHA256
  
  028575ff56abc6babc165ee7089a506fb48bcfba3c796350dc2b353fbb19b99a
- SHA512
  
  3a0c600a5e0a23fa9a8cf53238dc1a851ec2f4e916ac86f04a7345e05a5b4aaf860d1ea1483dea4841b8e6c8a1c58868f1c6979b407d9cd4a0a0b6f80d9651ed
- SSDEEP
  
  768:QIBar1ZIZYnfI9opm6AIHIjaI7g9mVmUnUoNE/W5dRV8:pW1ZIZqI9opm6AIHIjzmUdNzd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2