e05b109dfccf2a012f2ca7103698e49716162b3a2167999cbaacb09e4befe26d | Triage

Sharing

General

Target

46bc5106f5fe4f052ef7e81e72ef9e00_JaffaCakes118
Size

6.3MB
Sample

240714-vln8sszarj
MD5

46bc5106f5fe4f052ef7e81e72ef9e00
SHA1

9c8d40e37c12ff826fe40bb754a9545540bb5cb4
SHA256

e05b109dfccf2a012f2ca7103698e49716162b3a2167999cbaacb09e4befe26d
SHA512

109eaa056f06c6fd7df04d523a65a1e21501f0b64d1e2089423d09733e9a63d394a4702220d9a1575af17a72ca569302c2908eed7f5b8ae11c1f44d16c868502
SSDEEP

196608:PXY0CVT4ID7vg/w3fmuSyiMNRIdT4OQ4HA:QNVcIDTuw3fmUzRIZnA

Score

8^/10

evasion

Malware Config

Targets

- Target
  
  46bc5106f5fe4f052ef7e81e72ef9e00_JaffaCakes118
- Size
  
  6.3MB
- MD5
  
  46bc5106f5fe4f052ef7e81e72ef9e00
- SHA1
  
  9c8d40e37c12ff826fe40bb754a9545540bb5cb4
- SHA256
  
  e05b109dfccf2a012f2ca7103698e49716162b3a2167999cbaacb09e4befe26d
- SHA512
  
  109eaa056f06c6fd7df04d523a65a1e21501f0b64d1e2089423d09733e9a63d394a4702220d9a1575af17a72ca569302c2908eed7f5b8ae11c1f44d16c868502
- SSDEEP
  
  196608:PXY0CVT4ID7vg/w3fmuSyiMNRIdT4OQ4HA:QNVcIDTuw3fmUzRIZnA
Score

8^/10

evasion
- Sets file to hidden
  Modifies file attributes to stop it showing in Explorer etc.
  evasion
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Hide Artifacts

Hidden Files and Directories

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2