68861a3e2ea21762997319f2db4c131ef8c3c2857896d45e7faff4c59187bb70 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

3a92b61ca49f27ccee4ce26218f0d95a_JaffaCakes118
Size

191KB
Sample

240512-rre1jadd59
MD5

3a92b61ca49f27ccee4ce26218f0d95a
SHA1

7569c9e7427da2c63c7c2b63aabc076fe2923db5
SHA256

68861a3e2ea21762997319f2db4c131ef8c3c2857896d45e7faff4c59187bb70
SHA512

8106689acfd932ac01ddc7a656f534f55557578c559637f6bb804967c0015653c7d6aa791628d4303ae6c61a43ce06e337d22beda36be715fbea0acfa94dc6c5
SSDEEP

3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dk:HAVySV1eY4k437d+4wkTHdS2s

Score

7^/10

Malware Config

Targets

- Target
  
  3a92b61ca49f27ccee4ce26218f0d95a_JaffaCakes118
- Size
  
  191KB
- MD5
  
  3a92b61ca49f27ccee4ce26218f0d95a
- SHA1
  
  7569c9e7427da2c63c7c2b63aabc076fe2923db5
- SHA256
  
  68861a3e2ea21762997319f2db4c131ef8c3c2857896d45e7faff4c59187bb70
- SHA512
  
  8106689acfd932ac01ddc7a656f534f55557578c559637f6bb804967c0015653c7d6aa791628d4303ae6c61a43ce06e337d22beda36be715fbea0acfa94dc6c5
- SSDEEP
  
  3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dk:HAVySV1eY4k437d+4wkTHdS2s
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2