b9bb87e6cf9c42359834bbf083281f2c5c52ba74583c7bafaacbdd107000f703 | Triage

Sharing

General

Target

39b10bdb7fd032eef8b163abb09ba997_JaffaCakes118
Size

15KB
Sample

241012-nabp1asark
MD5

39b10bdb7fd032eef8b163abb09ba997
SHA1

427c9bebe932e85782e95c10404de053d3a211e3
SHA256

b9bb87e6cf9c42359834bbf083281f2c5c52ba74583c7bafaacbdd107000f703
SHA512

677369853f5660705261fdd91f76ad61fabc1a9ea1994b1e682432e1c08a4ffdad2b3bf38156300225f7bff04babd31b6409953bbd02ef60188b197aeb3c6e06
SSDEEP

384:T75xQxQgrGkXlxgqLf45XQfePV8e50tD9:T75mQgKElxg2M5eD9

Score

7^/10

Malware Config

Targets

- Target
  
  39b10bdb7fd032eef8b163abb09ba997_JaffaCakes118
- Size
  
  15KB
- MD5
  
  39b10bdb7fd032eef8b163abb09ba997
- SHA1
  
  427c9bebe932e85782e95c10404de053d3a211e3
- SHA256
  
  b9bb87e6cf9c42359834bbf083281f2c5c52ba74583c7bafaacbdd107000f703
- SHA512
  
  677369853f5660705261fdd91f76ad61fabc1a9ea1994b1e682432e1c08a4ffdad2b3bf38156300225f7bff04babd31b6409953bbd02ef60188b197aeb3c6e06
- SSDEEP
  
  384:T75xQxQgrGkXlxgqLf45XQfePV8e50tD9:T75mQgKElxg2M5eD9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2