0f18fc07ea21b52566a28dbce870cfb3e1fb076b7f9378bcacdcb93eb680828a | Triage

Sharing

General

Target

640fee4e4f4460855f88144ece2e7ce1_JaffaCakes118
Size

41KB
Sample

240722-vr856ayelp
MD5

640fee4e4f4460855f88144ece2e7ce1
SHA1

3f4f92b0e4eef5ba3d7e5c8a0fff6ba2cfb16f0f
SHA256

0f18fc07ea21b52566a28dbce870cfb3e1fb076b7f9378bcacdcb93eb680828a
SHA512

b98e4f1d709d99722c940ed40f7e9d708050206314ab4b7b94b15a9391a2b5ec9d72debdd6b6001b81cc74165930b51f618f18451beeeb3019b9e5912a959b8f
SSDEEP

768:QGBar1ZIZYnfI9opm6AIHIjaI7g9mVmUnLoNE/W5dRV8:fW1ZIZqI9opm6AIHIjzmU8Nzd

Score

7^/10

Malware Config

Targets

- Target
  
  640fee4e4f4460855f88144ece2e7ce1_JaffaCakes118
- Size
  
  41KB
- MD5
  
  640fee4e4f4460855f88144ece2e7ce1
- SHA1
  
  3f4f92b0e4eef5ba3d7e5c8a0fff6ba2cfb16f0f
- SHA256
  
  0f18fc07ea21b52566a28dbce870cfb3e1fb076b7f9378bcacdcb93eb680828a
- SHA512
  
  b98e4f1d709d99722c940ed40f7e9d708050206314ab4b7b94b15a9391a2b5ec9d72debdd6b6001b81cc74165930b51f618f18451beeeb3019b9e5912a959b8f
- SSDEEP
  
  768:QGBar1ZIZYnfI9opm6AIHIjaI7g9mVmUnLoNE/W5dRV8:fW1ZIZqI9opm6AIHIjzmU8Nzd
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2