b4f1e50587c2396b1f3573604aa3daac72e483dc1e0391b9c89ed553163ac5e1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2b2d8f2d756393124d766c6cd5f69d10_JaffaCakes118
Size

712KB
Sample

240708-gd4rmavenn
MD5

2b2d8f2d756393124d766c6cd5f69d10
SHA1

d7a9978bea9f4c0189077d6e16143401dd93c839
SHA256

b4f1e50587c2396b1f3573604aa3daac72e483dc1e0391b9c89ed553163ac5e1
SHA512

c192125676103be637e4568f7087ff24baf1cdefeabff54f4c9f676c2d0afd097b11371d3bb46b0970f8d8c3aaecc54825601f5f8101bb0eea76277ef8150af1
SSDEEP

12288:0S/5RWKlFXXzKHlfdN5eJQ36lqFqqVZ0BGjTIChSo:0szWK7XzKHlfdNquLVZnjTBt

Score

7^/10

Malware Config

Targets

- Target
  
  2b2d8f2d756393124d766c6cd5f69d10_JaffaCakes118
- Size
  
  712KB
- MD5
  
  2b2d8f2d756393124d766c6cd5f69d10
- SHA1
  
  d7a9978bea9f4c0189077d6e16143401dd93c839
- SHA256
  
  b4f1e50587c2396b1f3573604aa3daac72e483dc1e0391b9c89ed553163ac5e1
- SHA512
  
  c192125676103be637e4568f7087ff24baf1cdefeabff54f4c9f676c2d0afd097b11371d3bb46b0970f8d8c3aaecc54825601f5f8101bb0eea76277ef8150af1
- SSDEEP
  
  12288:0S/5RWKlFXXzKHlfdN5eJQ36lqFqqVZ0BGjTIChSo:0szWK7XzKHlfdNquLVZnjTBt
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2