d3cf1145f0c457f4ccec3cbe0790c8137f14f6ea7111f3d86b24ddb8b4275c5c | Triage

Sharing

General

Target

2f44a33b0a512fc7f3a6e8ef878b8c12_JaffaCakes118
Size

14KB
Sample

240709-g1k8ssscqb
MD5

2f44a33b0a512fc7f3a6e8ef878b8c12
SHA1

3e51c6fb00e42710a4b957233657351bc5157d90
SHA256

d3cf1145f0c457f4ccec3cbe0790c8137f14f6ea7111f3d86b24ddb8b4275c5c
SHA512

be65a2406d547353dcfce108764893351c22676072ff7066c0e3cef3d0a40d31d5b8a721894361d1943080f37a5b078fdd3b8719ebf71da4ed8a1076b789bde0
SSDEEP

192:nODG5p2DELeZAFpq+5qf+0e16sYeNMsevhkWS/UM2iszlrn9smsJM58LveYdOnrB:/ckeZyqE1AS/1szp9UyMON0FTW

Score

7^/10

Malware Config

Targets

- Target
  
  2f44a33b0a512fc7f3a6e8ef878b8c12_JaffaCakes118
- Size
  
  14KB
- MD5
  
  2f44a33b0a512fc7f3a6e8ef878b8c12
- SHA1
  
  3e51c6fb00e42710a4b957233657351bc5157d90
- SHA256
  
  d3cf1145f0c457f4ccec3cbe0790c8137f14f6ea7111f3d86b24ddb8b4275c5c
- SHA512
  
  be65a2406d547353dcfce108764893351c22676072ff7066c0e3cef3d0a40d31d5b8a721894361d1943080f37a5b078fdd3b8719ebf71da4ed8a1076b789bde0
- SSDEEP
  
  192:nODG5p2DELeZAFpq+5qf+0e16sYeNMsevhkWS/UM2iszlrn9smsJM58LveYdOnrB:/ckeZyqE1AS/1szp9UyMON0FTW
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2