29ba639812ea8badb9ce8ca672c54840e57d2877519de438e87fbf32441df4ee | Triage

Sharing

General

Target

bc9a77d80952b0995f5bc02673433978_JaffaCakes118
Size

628KB
Sample

240823-vqwhnsxbqg
MD5

bc9a77d80952b0995f5bc02673433978
SHA1

5db41fe7fedc852ae5e1f0351adc436adad74c2e
SHA256

29ba639812ea8badb9ce8ca672c54840e57d2877519de438e87fbf32441df4ee
SHA512

1de87a96b29de3c5785a9b45c816d35220ecbe65ccad799ec90d69faad81cc5d8d4bd82599ed360883f7d5f9123e4896de96db5aad4baed2d40afde7abe58488
SSDEEP

6144:QsHsthcdRsISwBVz9E/TLvx8TYawAzUaZO2viDfnGU0xYXhHHMMOSMAbJJ9g0xYj:Ie/Swjz9E7o/SavsoYXhnYAyoYXhnYA

Score

7^/10

Malware Config

Targets

- Target
  
  bc9a77d80952b0995f5bc02673433978_JaffaCakes118
- Size
  
  628KB
- MD5
  
  bc9a77d80952b0995f5bc02673433978
- SHA1
  
  5db41fe7fedc852ae5e1f0351adc436adad74c2e
- SHA256
  
  29ba639812ea8badb9ce8ca672c54840e57d2877519de438e87fbf32441df4ee
- SHA512
  
  1de87a96b29de3c5785a9b45c816d35220ecbe65ccad799ec90d69faad81cc5d8d4bd82599ed360883f7d5f9123e4896de96db5aad4baed2d40afde7abe58488
- SSDEEP
  
  6144:QsHsthcdRsISwBVz9E/TLvx8TYawAzUaZO2viDfnGU0xYXhHHMMOSMAbJJ9g0xYj:Ie/Swjz9E7o/SavsoYXhnYAyoYXhnYA
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2