cf9d43179f61d809d388bd5ca4f17df77592c1a2da7d3b3c0d4e5ca6d111fa20 | Triage

Sharing

General

Target

08da12f7e00e058fd51bb9989d3db0b9_JaffaCakes118
Size

30KB
Sample

240624-qzpz2ayckm
MD5

08da12f7e00e058fd51bb9989d3db0b9
SHA1

e5859919ddabbf6be8f0ed8d8e58125c39f07e66
SHA256

cf9d43179f61d809d388bd5ca4f17df77592c1a2da7d3b3c0d4e5ca6d111fa20
SHA512

026e3c218a2d7ac6e6bd44f33a0bbd0bc9bb0926443f069fd76e5ddd4e821fe7c4eb4f29ce20197573d789599f6d61a6f76cf55b4c08b4ed2d59eb4a67c14260
SSDEEP

384:TpXq+4wNV3BHXo0L7myQOQmc8n+N5ADt/+qVYDH4UsYwnM5qYo:9X4Q3BH40MO7+0DtmYiYbt

Score

7^/10

Malware Config

Targets

- Target
  
  08da12f7e00e058fd51bb9989d3db0b9_JaffaCakes118
- Size
  
  30KB
- MD5
  
  08da12f7e00e058fd51bb9989d3db0b9
- SHA1
  
  e5859919ddabbf6be8f0ed8d8e58125c39f07e66
- SHA256
  
  cf9d43179f61d809d388bd5ca4f17df77592c1a2da7d3b3c0d4e5ca6d111fa20
- SHA512
  
  026e3c218a2d7ac6e6bd44f33a0bbd0bc9bb0926443f069fd76e5ddd4e821fe7c4eb4f29ce20197573d789599f6d61a6f76cf55b4c08b4ed2d59eb4a67c14260
- SSDEEP
  
  384:TpXq+4wNV3BHXo0L7myQOQmc8n+N5ADt/+qVYDH4UsYwnM5qYo:9X4Q3BH40MO7+0DtmYiYbt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2