22f599c4b0fb28992b6d99ec1134b10804dd4b0ddb734188ae3148f16667f2f5 | Triage

Sharing

General

Target

62d86d48c1e3e0e99de553e483a6e812_JaffaCakes118
Size

44KB
Sample

240722-md9krstajl
MD5

62d86d48c1e3e0e99de553e483a6e812
SHA1

39e43ed662b0b37b1d5d48d2aec297972b760aa0
SHA256

22f599c4b0fb28992b6d99ec1134b10804dd4b0ddb734188ae3148f16667f2f5
SHA512

58e91815cc6eabf8996e5c97574be50c1e4161a8183b38188ace42a19e06a8149fabc4b7ce4ddff4c6aba99485c1710fc4759fab0f2c1f1961d66a3541ac90b2
SSDEEP

768:eo15svxVih9sKrLUhivCrHA9tGT8T0kdOGivJ1b:ejih9sK5qDZZ1b

Score

7^/10

Malware Config

Targets

- Target
  
  62d86d48c1e3e0e99de553e483a6e812_JaffaCakes118
- Size
  
  44KB
- MD5
  
  62d86d48c1e3e0e99de553e483a6e812
- SHA1
  
  39e43ed662b0b37b1d5d48d2aec297972b760aa0
- SHA256
  
  22f599c4b0fb28992b6d99ec1134b10804dd4b0ddb734188ae3148f16667f2f5
- SHA512
  
  58e91815cc6eabf8996e5c97574be50c1e4161a8183b38188ace42a19e06a8149fabc4b7ce4ddff4c6aba99485c1710fc4759fab0f2c1f1961d66a3541ac90b2
- SSDEEP
  
  768:eo15svxVih9sKrLUhivCrHA9tGT8T0kdOGivJ1b:ejih9sK5qDZZ1b
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2