b2ad1ae2c2d98ecb2403d81be3a818be84ad5bf8d1206e61a94bd0d09556c665 | Triage

Sharing

General

Target

fa23820ff42a8ab03b9339081d4efe68_JaffaCakes118
Size

105KB
Sample

240419-mw991shc25
MD5

fa23820ff42a8ab03b9339081d4efe68
SHA1

b5483bc16db3deec73f5ae3d08c905baf1a132df
SHA256

b2ad1ae2c2d98ecb2403d81be3a818be84ad5bf8d1206e61a94bd0d09556c665
SHA512

3a3a31c27d6623a45e852c3f9492ff5069a476bd62473bd91a7d95bc4931fa982ba285ed746a18fd041e48c778d5b31fc4c5a38f5705168d46c1ca8a2aaed3ea
SSDEEP

1536:SKG8fZyRq9hka9E5m91Dsq5tkAJBpe/Ws1AztqoAUYiH1XG4kFGdDLUMP7jo9Rsv:SKZfQgz65m93rAqco/YWG3FGd1jw01WG

Score

7^/10

Malware Config

Targets

- Target
  
  fa23820ff42a8ab03b9339081d4efe68_JaffaCakes118
- Size
  
  105KB
- MD5
  
  fa23820ff42a8ab03b9339081d4efe68
- SHA1
  
  b5483bc16db3deec73f5ae3d08c905baf1a132df
- SHA256
  
  b2ad1ae2c2d98ecb2403d81be3a818be84ad5bf8d1206e61a94bd0d09556c665
- SHA512
  
  3a3a31c27d6623a45e852c3f9492ff5069a476bd62473bd91a7d95bc4931fa982ba285ed746a18fd041e48c778d5b31fc4c5a38f5705168d46c1ca8a2aaed3ea
- SSDEEP
  
  1536:SKG8fZyRq9hka9E5m91Dsq5tkAJBpe/Ws1AztqoAUYiH1XG4kFGdDLUMP7jo9Rsv:SKZfQgz65m93rAqco/YWG3FGd1jw01WG
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2