97242c4e64e7925bd73f1c8bdbd5ca75e25411ff1bba542806bb56c4b3e6e7de | Triage

Sharing

Copy URL Twitter E-mail

General

Target

5c64be8217f67d71978638310a07b199_JaffaCakes118
Size

342KB
Sample

240719-r5wv7swfkm
MD5

5c64be8217f67d71978638310a07b199
SHA1

ca2f4475614a678d7520ac361e01859112ce458b
SHA256

97242c4e64e7925bd73f1c8bdbd5ca75e25411ff1bba542806bb56c4b3e6e7de
SHA512

3de83d4c3c6e2b53e4630f122c308cc6e0f183b3d89e1786046c1ef395d61f7e2a7e632b92642546223f420e210539c76fadf75d605de9c8ea91dbf5ab90f40f
SSDEEP

6144:cUvv+vZMLxdoAlROTh0yIqM/zqPyFSF9I1M/q4cNoo+S/RtyW1Opw9v:9v+vsnbsl/hk1M/qrNooV/REWQpw9v

Score

7^/10

Malware Config

Targets

- Target
  
  5c64be8217f67d71978638310a07b199_JaffaCakes118
- Size
  
  342KB
- MD5
  
  5c64be8217f67d71978638310a07b199
- SHA1
  
  ca2f4475614a678d7520ac361e01859112ce458b
- SHA256
  
  97242c4e64e7925bd73f1c8bdbd5ca75e25411ff1bba542806bb56c4b3e6e7de
- SHA512
  
  3de83d4c3c6e2b53e4630f122c308cc6e0f183b3d89e1786046c1ef395d61f7e2a7e632b92642546223f420e210539c76fadf75d605de9c8ea91dbf5ab90f40f
- SSDEEP
  
  6144:cUvv+vZMLxdoAlROTh0yIqM/zqPyFSF9I1M/q4cNoo+S/RtyW1Opw9v:9v+vsnbsl/hk1M/qrNooV/REWQpw9v
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2