fac2a8459b9e0d3eccce596df45825ef2c79049249bc66b0c0a1ee78dfc5d170 | Triage

Sharing

General

Target

42f4048c974199090993f59ca86f8b24_JaffaCakes118
Size

160KB
Sample

240713-xqc3fatbqn
MD5

42f4048c974199090993f59ca86f8b24
SHA1

3443e03a67590ab20f763c24da3a596462ecbbe0
SHA256

fac2a8459b9e0d3eccce596df45825ef2c79049249bc66b0c0a1ee78dfc5d170
SHA512

c6a23ef5243cbf81241eebd271dc48de078fb946036fd69de7bc7305bd9e67d373457bb9d2ffa387235e47473259fd2fd38af19a28b7e7585e5e6c15868436c3
SSDEEP

3072:8sDV6Az1lWgFvYGnJd6KpZVwuTN9WU/G9h3Gw590KqWbmzALbvl6:tQAKgFvYGJd6KpZVwuTN9WU/G9h2w591

Score

7^/10

Malware Config

Targets

- Target
  
  42f4048c974199090993f59ca86f8b24_JaffaCakes118
- Size
  
  160KB
- MD5
  
  42f4048c974199090993f59ca86f8b24
- SHA1
  
  3443e03a67590ab20f763c24da3a596462ecbbe0
- SHA256
  
  fac2a8459b9e0d3eccce596df45825ef2c79049249bc66b0c0a1ee78dfc5d170
- SHA512
  
  c6a23ef5243cbf81241eebd271dc48de078fb946036fd69de7bc7305bd9e67d373457bb9d2ffa387235e47473259fd2fd38af19a28b7e7585e5e6c15868436c3
- SSDEEP
  
  3072:8sDV6Az1lWgFvYGnJd6KpZVwuTN9WU/G9h3Gw590KqWbmzALbvl6:tQAKgFvYGJd6KpZVwuTN9WU/G9h2w591
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2