37deae267cd32ffa644a562fef471f8e6b8f2b64ddd2c42ed0c8cb7f4facf254 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

13beb07c7b3cc7e4918f0e0008282ff7_JaffaCakes118
Size

191KB
Sample

240504-v1anyscd5z
MD5

13beb07c7b3cc7e4918f0e0008282ff7
SHA1

e0de2fb6349fd36ffa337f1188c17cb1e2d266d5
SHA256

37deae267cd32ffa644a562fef471f8e6b8f2b64ddd2c42ed0c8cb7f4facf254
SHA512

d6be098333ea903fa4aac29fa66b40309d8f185cdb5a058439acf50c10c7d9fabdc5b54b1f053ec833da9bbc5e09263954b038a4ee3f9b3f18e3e9c4751a1fb1
SSDEEP

3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dq:HAVySV1eY4k437d+4wkTHdS2S

Score

7^/10

Malware Config

Targets

- Target
  
  13beb07c7b3cc7e4918f0e0008282ff7_JaffaCakes118
- Size
  
  191KB
- MD5
  
  13beb07c7b3cc7e4918f0e0008282ff7
- SHA1
  
  e0de2fb6349fd36ffa337f1188c17cb1e2d266d5
- SHA256
  
  37deae267cd32ffa644a562fef471f8e6b8f2b64ddd2c42ed0c8cb7f4facf254
- SHA512
  
  d6be098333ea903fa4aac29fa66b40309d8f185cdb5a058439acf50c10c7d9fabdc5b54b1f053ec833da9bbc5e09263954b038a4ee3f9b3f18e3e9c4751a1fb1
- SSDEEP
  
  3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dq:HAVySV1eY4k437d+4wkTHdS2S
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2