e5224f6c129aa04503be24ac597830ce034c5e221d462f486941993e81a2ce82 | Triage

Sharing

General

Target

f1e112e5eece6dcff26ec1b7858b96a2_JaffaCakes118
Size

73KB
Sample

240415-ze99xafg38
MD5

f1e112e5eece6dcff26ec1b7858b96a2
SHA1

dfbaed84a16c293be055837642754cc1b3387e05
SHA256

e5224f6c129aa04503be24ac597830ce034c5e221d462f486941993e81a2ce82
SHA512

a3bd0d8f5bbac0be709278df26355cc63fed25e017d478147d35f78d1747f4914d084a318cd95e1c6a5aced915cabfd637e8ac815bdcd3428cce37e704f053db
SSDEEP

1536:4//6phC0KLs4ECyf9JBi8b0Qwv91YDdkXlAEyRNNz9Yolr:4/+mLqvi8bYKal85YYr

Score

7^/10

Malware Config

Targets

- Target
  
  f1e112e5eece6dcff26ec1b7858b96a2_JaffaCakes118
- Size
  
  73KB
- MD5
  
  f1e112e5eece6dcff26ec1b7858b96a2
- SHA1
  
  dfbaed84a16c293be055837642754cc1b3387e05
- SHA256
  
  e5224f6c129aa04503be24ac597830ce034c5e221d462f486941993e81a2ce82
- SHA512
  
  a3bd0d8f5bbac0be709278df26355cc63fed25e017d478147d35f78d1747f4914d084a318cd95e1c6a5aced915cabfd637e8ac815bdcd3428cce37e704f053db
- SSDEEP
  
  1536:4//6phC0KLs4ECyf9JBi8b0Qwv91YDdkXlAEyRNNz9Yolr:4/+mLqvi8bYKal85YYr
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2