9819605f62f285781d1369dc42c69f07769b4447bf88106ba98d94c5a5eb67cc | Triage

Sharing

Copy URL Twitter E-mail

General

Target

275ef24bfcec1a53b599da8f48a59420_JaffaCakes118
Size

191KB
Sample

240509-age44shg48
MD5

275ef24bfcec1a53b599da8f48a59420
SHA1

1479d89b585117e46ea2190223ceeca80aa99244
SHA256

9819605f62f285781d1369dc42c69f07769b4447bf88106ba98d94c5a5eb67cc
SHA512

3008dfcf18632bdc42dcf334b5fbf12a284c2f8a5d922992acec790031d8b3d06fd59c7871980848da86a0f9e0a7dd5a5771f38692757968e9f36fa248d86710
SSDEEP

3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dL:HAVySV1eY4k437d+4wkTHdS2T

Score

7^/10

Malware Config

Targets

- Target
  
  275ef24bfcec1a53b599da8f48a59420_JaffaCakes118
- Size
  
  191KB
- MD5
  
  275ef24bfcec1a53b599da8f48a59420
- SHA1
  
  1479d89b585117e46ea2190223ceeca80aa99244
- SHA256
  
  9819605f62f285781d1369dc42c69f07769b4447bf88106ba98d94c5a5eb67cc
- SHA512
  
  3008dfcf18632bdc42dcf334b5fbf12a284c2f8a5d922992acec790031d8b3d06fd59c7871980848da86a0f9e0a7dd5a5771f38692757968e9f36fa248d86710
- SSDEEP
  
  3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dL:HAVySV1eY4k437d+4wkTHdS2T
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2