6c74a34552008d0fad98199544cfe3463ae4b783969997206c9503d826006f37 | Triage

Sharing

General

Target

cf2698bbd827384c2d80ce7260730dfa_JaffaCakes118
Size

105KB
Sample

240906-krvyesxckj
MD5

cf2698bbd827384c2d80ce7260730dfa
SHA1

b2dfbb6eb14761517c0376fea844e3e898b4fe05
SHA256

6c74a34552008d0fad98199544cfe3463ae4b783969997206c9503d826006f37
SHA512

4caec1ea40b13e412b74d9ac5f8147fc16b20eb554f457723fc97539b870cb38c750b2125bea19b238a07ab49a44b7394d4a5ad9a6f8d341162c6a4a61d7625a
SSDEEP

3072:3ZlsN/vCtko2SYgnZoRHdrHx5GXBwLWNI3:JlsNJo2ShZoldrPGXB5I3

Score

7^/10

aspackv2 discovery

Malware Config

Targets

- Target
  
  cf2698bbd827384c2d80ce7260730dfa_JaffaCakes118
- Size
  
  105KB
- MD5
  
  cf2698bbd827384c2d80ce7260730dfa
- SHA1
  
  b2dfbb6eb14761517c0376fea844e3e898b4fe05
- SHA256
  
  6c74a34552008d0fad98199544cfe3463ae4b783969997206c9503d826006f37
- SHA512
  
  4caec1ea40b13e412b74d9ac5f8147fc16b20eb554f457723fc97539b870cb38c750b2125bea19b238a07ab49a44b7394d4a5ad9a6f8d341162c6a4a61d7625a
- SSDEEP
  
  3072:3ZlsN/vCtko2SYgnZoRHdrHx5GXBwLWNI3:JlsNJo2ShZoldrPGXB5I3
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2