6a08eee29d5988c87413e2bad5d8d091a6cf58154e0473159dd47ae2aa76d7c8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

680dcaf2909202ee8771c3d88d1995de_JaffaCakes118
Size

14KB
Sample

240723-segt2awdjm
MD5

680dcaf2909202ee8771c3d88d1995de
SHA1

ba40bfbe023bd6bcb7d83cab908b1505fceca348
SHA256

6a08eee29d5988c87413e2bad5d8d091a6cf58154e0473159dd47ae2aa76d7c8
SHA512

63790d941b613217b42b5d54e89cb58272a65b9d596b037e1c149d7052f774630ed43050093a84bd28cc3ba49bb5855a96f9e523eb71e135ffe9cb09acbcb8ed
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYWmbSp:hDXWipuE+K3/SSHgxmWmbSp

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  680dcaf2909202ee8771c3d88d1995de_JaffaCakes118
- Size
  
  14KB
- MD5
  
  680dcaf2909202ee8771c3d88d1995de
- SHA1
  
  ba40bfbe023bd6bcb7d83cab908b1505fceca348
- SHA256
  
  6a08eee29d5988c87413e2bad5d8d091a6cf58154e0473159dd47ae2aa76d7c8
- SHA512
  
  63790d941b613217b42b5d54e89cb58272a65b9d596b037e1c149d7052f774630ed43050093a84bd28cc3ba49bb5855a96f9e523eb71e135ffe9cb09acbcb8ed
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYWmbSp:hDXWipuE+K3/SSHgxmWmbSp
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2