7e1ab1ad0edc99223937a83365802b80db338c5ab974d958188ff2b50bed1f5c | Triage

Sharing

General

Target

087852138e8475374d6881936a1f7056_JaffaCakes118
Size

76KB
Sample

240624-ph937svgmj
MD5

087852138e8475374d6881936a1f7056
SHA1

db17a54d2b0314114ef7ea29fcbac333b83ed8a6
SHA256

7e1ab1ad0edc99223937a83365802b80db338c5ab974d958188ff2b50bed1f5c
SHA512

3b60c927cb6ed0465f7a124fcbb76129ef518cafb1c37890d6698eb7b582ba6ead14ad9eb20c40774a9f7dfe88f580a8c01413c73f9e07fff15613efd3e568e2
SSDEEP

768:ghvlp58le8uNlAeMQWEIfG9bBUExZEu4wK6js4l1Q9ZKiO9hZjvyzoObpjsmh:YvZ8loNlhptnnP4wK6o3TKiOqsmh

Score

7^/10

Malware Config

Targets

- Target
  
  087852138e8475374d6881936a1f7056_JaffaCakes118
- Size
  
  76KB
- MD5
  
  087852138e8475374d6881936a1f7056
- SHA1
  
  db17a54d2b0314114ef7ea29fcbac333b83ed8a6
- SHA256
  
  7e1ab1ad0edc99223937a83365802b80db338c5ab974d958188ff2b50bed1f5c
- SHA512
  
  3b60c927cb6ed0465f7a124fcbb76129ef518cafb1c37890d6698eb7b582ba6ead14ad9eb20c40774a9f7dfe88f580a8c01413c73f9e07fff15613efd3e568e2
- SSDEEP
  
  768:ghvlp58le8uNlAeMQWEIfG9bBUExZEu4wK6js4l1Q9ZKiO9hZjvyzoObpjsmh:YvZ8loNlhptnnP4wK6o3TKiOqsmh
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2