0ba861c0ce7987a9ae34bd4a7d2356e04347ce031ac25ceebd425558f2e1ff32 | Triage

Sharing

General

Target

01d1fe14e340028d6d52c78d9ec0113c_JaffaCakes118
Size

109KB
Sample

240620-cadntasclc
MD5

01d1fe14e340028d6d52c78d9ec0113c
SHA1

eb4deb43b8f1543a28384df9a8d5460d435c37b5
SHA256

0ba861c0ce7987a9ae34bd4a7d2356e04347ce031ac25ceebd425558f2e1ff32
SHA512

40fc3933e81ee2ffaba749df13f1e08b8e6d8e8cef2d34031e33ed0b2722a3cac218539f420e1f16e64769191e29f5f8aadde53df92a3e8f0c96a3f065d18d4c
SSDEEP

3072:SD3Hl5JVSa4GhR+lbTlVd3c6h2o1DNoh:y3Xok+llLQoC

Score

7^/10

Malware Config

Targets

- Target
  
  01d1fe14e340028d6d52c78d9ec0113c_JaffaCakes118
- Size
  
  109KB
- MD5
  
  01d1fe14e340028d6d52c78d9ec0113c
- SHA1
  
  eb4deb43b8f1543a28384df9a8d5460d435c37b5
- SHA256
  
  0ba861c0ce7987a9ae34bd4a7d2356e04347ce031ac25ceebd425558f2e1ff32
- SHA512
  
  40fc3933e81ee2ffaba749df13f1e08b8e6d8e8cef2d34031e33ed0b2722a3cac218539f420e1f16e64769191e29f5f8aadde53df92a3e8f0c96a3f065d18d4c
- SSDEEP
  
  3072:SD3Hl5JVSa4GhR+lbTlVd3c6h2o1DNoh:y3Xok+llLQoC
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2