0142b14db825cca9f0d66a62f6c6abc66d232f31566ce6b140e3d6b2cf58b8fa | Triage

Sharing

General

Target

4968c9d3bb858974ec4fbd5fd25b0371_JaffaCakes118
Size

60KB
Sample

240715-mmfn2svcra
MD5

4968c9d3bb858974ec4fbd5fd25b0371
SHA1

51cede37e79df4193621011250217bcfa5547bbf
SHA256

0142b14db825cca9f0d66a62f6c6abc66d232f31566ce6b140e3d6b2cf58b8fa
SHA512

3a256a24e2423f52d7ecd389b2ac073a6867954150e2052f892842c248fcd8c63c4171171bdfdc28b872969cdf02e9992f26f19097f62c0f237a1173e2375ce3
SSDEEP

384:SxhONiT+TRGLWk/thFTnVuWU+Fox+J1tJOpYAMgFi9TYZfOQqHXebFu:ahONiqIZDRVuT/GSpYAfiJgeQF

Score

7^/10

Malware Config

Targets

- Target
  
  4968c9d3bb858974ec4fbd5fd25b0371_JaffaCakes118
- Size
  
  60KB
- MD5
  
  4968c9d3bb858974ec4fbd5fd25b0371
- SHA1
  
  51cede37e79df4193621011250217bcfa5547bbf
- SHA256
  
  0142b14db825cca9f0d66a62f6c6abc66d232f31566ce6b140e3d6b2cf58b8fa
- SHA512
  
  3a256a24e2423f52d7ecd389b2ac073a6867954150e2052f892842c248fcd8c63c4171171bdfdc28b872969cdf02e9992f26f19097f62c0f237a1173e2375ce3
- SSDEEP
  
  384:SxhONiT+TRGLWk/thFTnVuWU+Fox+J1tJOpYAMgFi9TYZfOQqHXebFu:ahONiqIZDRVuT/GSpYAfiJgeQF
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2