174549914d71bc2094c51fa93026d25a5b8596e562e08674c34c605617bdd542 | Triage

Sharing

General

Target

3e672337f1c3a4ce68b7bc50401a1b47_JaffaCakes118
Size

362KB
Sample

240712-w33yysxcpb
MD5

3e672337f1c3a4ce68b7bc50401a1b47
SHA1

1c7a36b2b1c3037b0ea8f4134128da3f3b219461
SHA256

174549914d71bc2094c51fa93026d25a5b8596e562e08674c34c605617bdd542
SHA512

359d52d48f67081d6c7923aa84dcf833621bf2144fd53b94713ad1f0e262d3fa09ef1f9dadd4892ceef0ca7c888a5200121a1df08c76802a58368f38997c193a
SSDEEP

6144:b1dlZro5ysCIfP7kKJBImImDyG4TrRERqyoJwREBtSWwLugv/scSDZSiBoYGD:b1dlZo5yjIfp0ocOqyjRS0WwRv/fSWY8

Score

7^/10

Malware Config

Targets

- Target
  
  3e672337f1c3a4ce68b7bc50401a1b47_JaffaCakes118
- Size
  
  362KB
- MD5
  
  3e672337f1c3a4ce68b7bc50401a1b47
- SHA1
  
  1c7a36b2b1c3037b0ea8f4134128da3f3b219461
- SHA256
  
  174549914d71bc2094c51fa93026d25a5b8596e562e08674c34c605617bdd542
- SHA512
  
  359d52d48f67081d6c7923aa84dcf833621bf2144fd53b94713ad1f0e262d3fa09ef1f9dadd4892ceef0ca7c888a5200121a1df08c76802a58368f38997c193a
- SSDEEP
  
  6144:b1dlZro5ysCIfP7kKJBImImDyG4TrRERqyoJwREBtSWwLugv/scSDZSiBoYGD:b1dlZo5yjIfp0ocOqyjRS0WwRv/fSWY8
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2