4f7139b502ed41bc662627af93e8f761c27c90cf8ce17a0b839682f299fc1c52 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36baf2f0a9a453d328cd3d62e9948718_JaffaCakes118
Size

101KB
Sample

240710-2vrhvaxbma
MD5

36baf2f0a9a453d328cd3d62e9948718
SHA1

8d43e2a5d17f768d45590b58f2a71e46fc7b9ef9
SHA256

4f7139b502ed41bc662627af93e8f761c27c90cf8ce17a0b839682f299fc1c52
SHA512

c3fc272310d9d762d0e9bddfcd5e3170e55bf973cd196f3511041c9b84875e2ea1bcc241919d25785c6d47112adee33ce9960943a26ed1cbe0e630fb56a46ead
SSDEEP

1536:SR390WkpzzWG9ye9+O84EhxP7IT9IQr6sNDAT/QEHSi2nc9:y21WGgk+ZTC9IQr6sNMT3yi2c9

Score

7^/10

Malware Config

Targets

- Target
  
  36baf2f0a9a453d328cd3d62e9948718_JaffaCakes118
- Size
  
  101KB
- MD5
  
  36baf2f0a9a453d328cd3d62e9948718
- SHA1
  
  8d43e2a5d17f768d45590b58f2a71e46fc7b9ef9
- SHA256
  
  4f7139b502ed41bc662627af93e8f761c27c90cf8ce17a0b839682f299fc1c52
- SHA512
  
  c3fc272310d9d762d0e9bddfcd5e3170e55bf973cd196f3511041c9b84875e2ea1bcc241919d25785c6d47112adee33ce9960943a26ed1cbe0e630fb56a46ead
- SSDEEP
  
  1536:SR390WkpzzWG9ye9+O84EhxP7IT9IQr6sNDAT/QEHSi2nc9:y21WGgk+ZTC9IQr6sNMT3yi2c9
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2