7fc57190388ab4a4454026b364d9a58a3ed0a193282500542a09984c12002532 | Triage

Sharing

General

Target

3d471a83ed7c39a7c1c6c30f542f690c_JaffaCakes118
Size

106KB
Sample

240712-n3l2fascrm
MD5

3d471a83ed7c39a7c1c6c30f542f690c
SHA1

0095881939a2373587992c8630da1ccbc5cd5061
SHA256

7fc57190388ab4a4454026b364d9a58a3ed0a193282500542a09984c12002532
SHA512

f7550e10d7069b057ca6518dc040c8ddbe5edd6680325c615051d33464535b36bc69318dc85aee7a161f9afd57305abe8163b9dc5fabba8b7d941a4d5934a542
SSDEEP

768:ovAbpyCVU4NGMMD3016VY1q/miAK7TubFBCLmRdnukufMZg+sddagY8WL:oIdfgD3//zTACWZuDEZPseMWL

Score

7^/10

Malware Config

Targets

- Target
  
  3d471a83ed7c39a7c1c6c30f542f690c_JaffaCakes118
- Size
  
  106KB
- MD5
  
  3d471a83ed7c39a7c1c6c30f542f690c
- SHA1
  
  0095881939a2373587992c8630da1ccbc5cd5061
- SHA256
  
  7fc57190388ab4a4454026b364d9a58a3ed0a193282500542a09984c12002532
- SHA512
  
  f7550e10d7069b057ca6518dc040c8ddbe5edd6680325c615051d33464535b36bc69318dc85aee7a161f9afd57305abe8163b9dc5fabba8b7d941a4d5934a542
- SSDEEP
  
  768:ovAbpyCVU4NGMMD3016VY1q/miAK7TubFBCLmRdnukufMZg+sddagY8WL:oIdfgD3//zTACWZuDEZPseMWL
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2