70e35260a3653775d66650a0b533d689a40ba1a2b711d7fa63f6d359e15c6c5a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

4aba75bff87a49ead0e3805e893d3293_JaffaCakes118
Size

22KB
Sample

240715-wabn1avblg
MD5

4aba75bff87a49ead0e3805e893d3293
SHA1

522b2152c52d1ce45e232ab10a738c19ff3abb0a
SHA256

70e35260a3653775d66650a0b533d689a40ba1a2b711d7fa63f6d359e15c6c5a
SHA512

eaae5f11ced462d3260f84bac6f5e99385212e9b3260f2a2bf21db672410643105d19ddb171971abc9ced1eef5d21d62780294b2310f31c81268aa3be9745fc5
SSDEEP

192:Xq7mxGvzXEZlvTNBMkt3hmU8vQ4bS6o8G92914JG:X3IXEZxTjMkt4U8Vc9oCJG

Score

7^/10

Malware Config

Targets

- Target
  
  4aba75bff87a49ead0e3805e893d3293_JaffaCakes118
- Size
  
  22KB
- MD5
  
  4aba75bff87a49ead0e3805e893d3293
- SHA1
  
  522b2152c52d1ce45e232ab10a738c19ff3abb0a
- SHA256
  
  70e35260a3653775d66650a0b533d689a40ba1a2b711d7fa63f6d359e15c6c5a
- SHA512
  
  eaae5f11ced462d3260f84bac6f5e99385212e9b3260f2a2bf21db672410643105d19ddb171971abc9ced1eef5d21d62780294b2310f31c81268aa3be9745fc5
- SSDEEP
  
  192:Xq7mxGvzXEZlvTNBMkt3hmU8vQ4bS6o8G92914JG:X3IXEZxTjMkt4U8Vc9oCJG
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2