ada6453117a74f758c18994a5b7f39ff1bd40b1726f58dbd11d51b61719e2abe | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b399420dc0428bab6f4296a24c14902f_JaffaCakes118
Size

191KB
Sample

240616-p3j3hsxgrq
MD5

b399420dc0428bab6f4296a24c14902f
SHA1

fcc6844b40df9d9854fbd2f188af510cc9f02587
SHA256

ada6453117a74f758c18994a5b7f39ff1bd40b1726f58dbd11d51b61719e2abe
SHA512

0e240aa2284947809624599a06d2a66c0f2e160eb361afdd885519b29b8a920634b917cd27a7b4246ab26b59c7279e9d6c442427a0bb95abd219a8c4755fa0cb
SSDEEP

3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0d1:HAVySV1eY4k437d+4wkTHdS2N

Score

7^/10

Malware Config

Targets

- Target
  
  b399420dc0428bab6f4296a24c14902f_JaffaCakes118
- Size
  
  191KB
- MD5
  
  b399420dc0428bab6f4296a24c14902f
- SHA1
  
  fcc6844b40df9d9854fbd2f188af510cc9f02587
- SHA256
  
  ada6453117a74f758c18994a5b7f39ff1bd40b1726f58dbd11d51b61719e2abe
- SHA512
  
  0e240aa2284947809624599a06d2a66c0f2e160eb361afdd885519b29b8a920634b917cd27a7b4246ab26b59c7279e9d6c442427a0bb95abd219a8c4755fa0cb
- SSDEEP
  
  3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0d1:HAVySV1eY4k437d+4wkTHdS2N
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2