e9c77576f3f9e0820ea6c967b1585e24693378975d504adb061f22ba6cc77ccd | Triage

Sharing

General

Target

0bab4f169d2aba122c02c443ce219663_JaffaCakes118
Size

135KB
Sample

240625-bc5pms1hpb
MD5

0bab4f169d2aba122c02c443ce219663
SHA1

30ec9995c5592801bd9ad4fdb63549bcc661c6a2
SHA256

e9c77576f3f9e0820ea6c967b1585e24693378975d504adb061f22ba6cc77ccd
SHA512

46e38de9e9968713b688019ede6ec931c22be8c1b76d4848705966e2e00a7aceb12aafc0875cf48fb4e12362f678f35217ae5fdbaa8c52d66e36cec226868d41
SSDEEP

3072:MHcolp0kf1Ypet5hnBhOpPUgxnFfrN8O8yf3:XoTf1Ypet5po

Score

7^/10

Malware Config

Targets

- Target
  
  0bab4f169d2aba122c02c443ce219663_JaffaCakes118
- Size
  
  135KB
- MD5
  
  0bab4f169d2aba122c02c443ce219663
- SHA1
  
  30ec9995c5592801bd9ad4fdb63549bcc661c6a2
- SHA256
  
  e9c77576f3f9e0820ea6c967b1585e24693378975d504adb061f22ba6cc77ccd
- SHA512
  
  46e38de9e9968713b688019ede6ec931c22be8c1b76d4848705966e2e00a7aceb12aafc0875cf48fb4e12362f678f35217ae5fdbaa8c52d66e36cec226868d41
- SSDEEP
  
  3072:MHcolp0kf1Ypet5hnBhOpPUgxnFfrN8O8yf3:XoTf1Ypet5po
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Scheduled Task/Job

Scheduled Task

Persistence

Scheduled Task/Job

Scheduled Task

Privilege Escalation

Scheduled Task/Job

Scheduled Task

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2