ee947f217935587b6747d852d83579948a0492fa5dcb5a5c27b1d4f47dc41ce8 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36a7533266668dfc6fa6f8404368c467_JaffaCakes118
Size

210KB
Sample

240710-2eejcatdkk
MD5

36a7533266668dfc6fa6f8404368c467
SHA1

72026857f4f1e1a4617dc6ffc29f73f2dba75048
SHA256

ee947f217935587b6747d852d83579948a0492fa5dcb5a5c27b1d4f47dc41ce8
SHA512

66248c0b7fb8cae498bbcc4370a93b4d3eff2b744a2a7214ef1c1e2615f02f52ea61ba7136eca50d563c97a190e4a530bf9af7015eb1e667027d51ea2c249f72
SSDEEP

3072:JVE4EtSH3ldBHwdGasNheIsH777nQdyjnoWXAkIYU6+kZsChh+UE9kQ5GJbwI:JazCp/NuHH7nhrGkfAke8XuGdw

Score

7^/10

Malware Config

Targets

- Target
  
  36a7533266668dfc6fa6f8404368c467_JaffaCakes118
- Size
  
  210KB
- MD5
  
  36a7533266668dfc6fa6f8404368c467
- SHA1
  
  72026857f4f1e1a4617dc6ffc29f73f2dba75048
- SHA256
  
  ee947f217935587b6747d852d83579948a0492fa5dcb5a5c27b1d4f47dc41ce8
- SHA512
  
  66248c0b7fb8cae498bbcc4370a93b4d3eff2b744a2a7214ef1c1e2615f02f52ea61ba7136eca50d563c97a190e4a530bf9af7015eb1e667027d51ea2c249f72
- SSDEEP
  
  3072:JVE4EtSH3ldBHwdGasNheIsH777nQdyjnoWXAkIYU6+kZsChh+UE9kQ5GJbwI:JazCp/NuHH7nhrGkfAke8XuGdw
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2