4c181c0b9b17fa72e3d58cbd5193bd9dc147bae4a5708e30bcee0456d5bf2321 | Triage

Sharing

General

Target

8f21322118b88bcd8821b01cacd1eb28_JaffaCakes118
Size

480KB
Sample

240602-xy148sca4y
MD5

8f21322118b88bcd8821b01cacd1eb28
SHA1

483bcd59b517887e38b9bed48fa4a04bde064363
SHA256

4c181c0b9b17fa72e3d58cbd5193bd9dc147bae4a5708e30bcee0456d5bf2321
SHA512

8f73be007a839baca15056db150119f7ae985aa74df81007ac1043cfcbc76e133b355ae51d321c701a11d57fc4502ffbb8f4816b39f0a69aec4a9af0b941f8d8
SSDEEP

6144:wlqL9zmKfFvKhLIF81q6cwdc9FHPQRsGjrNprvL7fnJKqmf3YcI8lWelSbr2oY:kknohMPQRs8BprvPfJKqmPYcI8a21

Score

7^/10

Malware Config

Targets

- Target
  
  8f21322118b88bcd8821b01cacd1eb28_JaffaCakes118
- Size
  
  480KB
- MD5
  
  8f21322118b88bcd8821b01cacd1eb28
- SHA1
  
  483bcd59b517887e38b9bed48fa4a04bde064363
- SHA256
  
  4c181c0b9b17fa72e3d58cbd5193bd9dc147bae4a5708e30bcee0456d5bf2321
- SHA512
  
  8f73be007a839baca15056db150119f7ae985aa74df81007ac1043cfcbc76e133b355ae51d321c701a11d57fc4502ffbb8f4816b39f0a69aec4a9af0b941f8d8
- SSDEEP
  
  6144:wlqL9zmKfFvKhLIF81q6cwdc9FHPQRsGjrNprvL7fnJKqmf3YcI8lWelSbr2oY:kknohMPQRs8BprvPfJKqmPYcI8a21
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2