629f00da66c851f0ed9821d472c50b88481a454774b372360cf5dc84d9e9363d | Triage

Sharing

Copy URL Twitter E-mail

General

Target

7f0522c79a9d65ebacc800382a4c3931_JaffaCakes118
Size

191KB
Sample

240529-bfxs7sch26
MD5

7f0522c79a9d65ebacc800382a4c3931
SHA1

d4eacd2b67e73545a7df1244346752057fb6277b
SHA256

629f00da66c851f0ed9821d472c50b88481a454774b372360cf5dc84d9e9363d
SHA512

a8df3ecde2acf8d2de1a32d56b19ab1f3eea3f6f162e544dd7ebfd61e6037b50daa142101f2d4e2ce674ab37d40aa42d837bceb169f692c0b93d1b4a0ce216a1
SSDEEP

3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dj:HAVySV1eY4k437d+4wkTHdS2L

Score

7^/10

Malware Config

Targets

- Target
  
  7f0522c79a9d65ebacc800382a4c3931_JaffaCakes118
- Size
  
  191KB
- MD5
  
  7f0522c79a9d65ebacc800382a4c3931
- SHA1
  
  d4eacd2b67e73545a7df1244346752057fb6277b
- SHA256
  
  629f00da66c851f0ed9821d472c50b88481a454774b372360cf5dc84d9e9363d
- SHA512
  
  a8df3ecde2acf8d2de1a32d56b19ab1f3eea3f6f162e544dd7ebfd61e6037b50daa142101f2d4e2ce674ab37d40aa42d837bceb169f692c0b93d1b4a0ce216a1
- SSDEEP
  
  3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dj:HAVySV1eY4k437d+4wkTHdS2L
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2