77f33920f68a8f4c4d3367084dbe52acca1fad135fc920f06bf3f116524ec426 | Triage

Sharing

General

Target

6558e1cc16ed1f9d711527e15849b39e_JaffaCakes118
Size

3.1MB
Sample

240522-at5kjaeh71
MD5

6558e1cc16ed1f9d711527e15849b39e
SHA1

5bb21152c801c160776be64aeaf6845dd6c2e52f
SHA256

77f33920f68a8f4c4d3367084dbe52acca1fad135fc920f06bf3f116524ec426
SHA512

ee2ccb842a40cd0c74f3072898698321deb1ad72312bfd47ce706f40882f1ac50144021fac11b9a33411be6f959ec851d630acb04547c66adf7a13468be0cff0
SSDEEP

49152:5Yjv7iKLA8VKR4S2+OvvW76HJakPQE9kiUGTITe0TdQvtR:5YT7iz8ZskakPQE97UZdotR

Score

6^/10

evasion trojan

Malware Config

Targets

- Target
  
  6558e1cc16ed1f9d711527e15849b39e_JaffaCakes118
- Size
  
  3.1MB
- MD5
  
  6558e1cc16ed1f9d711527e15849b39e
- SHA1
  
  5bb21152c801c160776be64aeaf6845dd6c2e52f
- SHA256
  
  77f33920f68a8f4c4d3367084dbe52acca1fad135fc920f06bf3f116524ec426
- SHA512
  
  ee2ccb842a40cd0c74f3072898698321deb1ad72312bfd47ce706f40882f1ac50144021fac11b9a33411be6f959ec851d630acb04547c66adf7a13468be0cff0
- SSDEEP
  
  49152:5Yjv7iKLA8VKR4S2+OvvW76HJakPQE9kiUGTITe0TdQvtR:5YT7iz8ZskakPQE97UZdotR
Score

6^/10

evasion trojan
- Checks whether UAC is enabled
  evasion trojan
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2