068162e2a6c7c192197076d1eda26f6e083b81bdf35b809e83939774ad8d5497 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cd1eea1f3780db849490951d4023cab7_JaffaCakes118
Size

183KB
Sample

240405-h25jhaef76
MD5

cd1eea1f3780db849490951d4023cab7
SHA1

721427fd4e26def26b9c69fdf20f3c7de4f6e7d7
SHA256

068162e2a6c7c192197076d1eda26f6e083b81bdf35b809e83939774ad8d5497
SHA512

42b43e9b9aa0d192abb1fb9b374b36592b8cec10ca0921b18d23e5f144f6bfbcf8da361baff03e4c62d1d3ad7dc690ec35130ad2996c5f3bb33aa88186acae89
SSDEEP

3072:IccZlnZMYOKWWwI98+/mMrdqqt3zH1z+/PcZKoTshqkS5s:3ulZMYOxncdx3TUMZKl25s

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  cd1eea1f3780db849490951d4023cab7_JaffaCakes118
- Size
  
  183KB
- MD5
  
  cd1eea1f3780db849490951d4023cab7
- SHA1
  
  721427fd4e26def26b9c69fdf20f3c7de4f6e7d7
- SHA256
  
  068162e2a6c7c192197076d1eda26f6e083b81bdf35b809e83939774ad8d5497
- SHA512
  
  42b43e9b9aa0d192abb1fb9b374b36592b8cec10ca0921b18d23e5f144f6bfbcf8da361baff03e4c62d1d3ad7dc690ec35130ad2996c5f3bb33aa88186acae89
- SSDEEP
  
  3072:IccZlnZMYOKWWwI98+/mMrdqqt3zH1z+/PcZKoTshqkS5s:3ulZMYOxncdx3TUMZKl25s
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Modifies file permissions
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

File and Directory Permissions Modification

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2