59b0aeacca07cd300955e9010b6aee69724ab36ad306fedf50359928feb2720b | Triage

Sharing

General

Target

5aa9384054baf008b3e9c7b6e460151a_JaffaCakes118
Size

15KB
Sample

240719-gabxfavdpm
MD5

5aa9384054baf008b3e9c7b6e460151a
SHA1

f43a6e7221b12c7b40fe65bb8aa3ffa092ea6f06
SHA256

59b0aeacca07cd300955e9010b6aee69724ab36ad306fedf50359928feb2720b
SHA512

59000d070c97f2410dfb923d01f3088005664cfaee04b75629775c5a004a5b94965b8d919f324938d5a5caec3475f8e08072cf99df6117b560bea67c518cbfca
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY52+p:hDXWipuE+K3/SSHgxmz

Score

7^/10

Malware Config

Targets

- Target
  
  5aa9384054baf008b3e9c7b6e460151a_JaffaCakes118
- Size
  
  15KB
- MD5
  
  5aa9384054baf008b3e9c7b6e460151a
- SHA1
  
  f43a6e7221b12c7b40fe65bb8aa3ffa092ea6f06
- SHA256
  
  59b0aeacca07cd300955e9010b6aee69724ab36ad306fedf50359928feb2720b
- SHA512
  
  59000d070c97f2410dfb923d01f3088005664cfaee04b75629775c5a004a5b94965b8d919f324938d5a5caec3475f8e08072cf99df6117b560bea67c518cbfca
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY52+p:hDXWipuE+K3/SSHgxmz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2