394d44e277f3e811f437a02c6d713156c675f0232e7c4ff7dab6b8b5582fb1b3 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

9eaba074a604a812e4966c384f86609c_JaffaCakes118
Size

191KB
Sample

240611-s2wayasarh
MD5

9eaba074a604a812e4966c384f86609c
SHA1

024a316cca58de474658f36ece53bd5ec966cb94
SHA256

394d44e277f3e811f437a02c6d713156c675f0232e7c4ff7dab6b8b5582fb1b3
SHA512

3ab53c5ea3f7bad2b4f029fe19f71b7bdd3a2e77af5797dc89454a2d0ad18e7aff5a821c9fcfa7eef85e897e85112b214d312e82d9ad7043cd652cce8bdc8759
SSDEEP

3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dn:HAVySV1eY4k437d+4wkTHdS2v

Score

7^/10

Malware Config

Targets

- Target
  
  9eaba074a604a812e4966c384f86609c_JaffaCakes118
- Size
  
  191KB
- MD5
  
  9eaba074a604a812e4966c384f86609c
- SHA1
  
  024a316cca58de474658f36ece53bd5ec966cb94
- SHA256
  
  394d44e277f3e811f437a02c6d713156c675f0232e7c4ff7dab6b8b5582fb1b3
- SHA512
  
  3ab53c5ea3f7bad2b4f029fe19f71b7bdd3a2e77af5797dc89454a2d0ad18e7aff5a821c9fcfa7eef85e897e85112b214d312e82d9ad7043cd652cce8bdc8759
- SSDEEP
  
  3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dn:HAVySV1eY4k437d+4wkTHdS2v
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2