91b54deefb9c471502fde2baa633e6e828b94c48060329afeba64ebe45f607a4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

0cf354304f82ca59bc78117915dcbecd_JaffaCakes118
Size

191KB
Sample

240502-akdqfsbc7s
MD5

0cf354304f82ca59bc78117915dcbecd
SHA1

2096169f246e2941487d4628cf660822e54f38d5
SHA256

91b54deefb9c471502fde2baa633e6e828b94c48060329afeba64ebe45f607a4
SHA512

a75a96a7f7dba279ad6de71fcdcddf9d35053471394abd5fa7fccd7f3f21a6690dc7876dd7103db63ea3dced351be1d62f4a6ff798f976569f398548a81b97b0
SSDEEP

3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dR:HAVySV1eY4k437d+4wkTHdS2m0

Score

7^/10

Malware Config

Targets

- Target
  
  0cf354304f82ca59bc78117915dcbecd_JaffaCakes118
- Size
  
  191KB
- MD5
  
  0cf354304f82ca59bc78117915dcbecd
- SHA1
  
  2096169f246e2941487d4628cf660822e54f38d5
- SHA256
  
  91b54deefb9c471502fde2baa633e6e828b94c48060329afeba64ebe45f607a4
- SHA512
  
  a75a96a7f7dba279ad6de71fcdcddf9d35053471394abd5fa7fccd7f3f21a6690dc7876dd7103db63ea3dced351be1d62f4a6ff798f976569f398548a81b97b0
- SSDEEP
  
  3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dR:HAVySV1eY4k437d+4wkTHdS2m0
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2