b812ceb9eb6693551a7ff8978c6066cc563340531f815ac38f34696a82b997d1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

60e535fb4fa0da9ad6925ea08b36b351_JaffaCakes118
Size

146KB
Sample

240721-wta7ks1cjn
MD5

60e535fb4fa0da9ad6925ea08b36b351
SHA1

d3c9dcc9a1dde52dabd088cd31f4adf03aebee5e
SHA256

b812ceb9eb6693551a7ff8978c6066cc563340531f815ac38f34696a82b997d1
SHA512

06b4dbd6f38e4942c950f6df6da4092405123a4c96bdebbec4016b1f3efc0a6fe53e980e1d2269cea60a64d72e04cba519a36a6244ab9b27f57c3bb029bd1aea
SSDEEP

3072:T6+O+RsMr4xwT+I0WRCIjTYCobhsX0vlJRcWYc+qFrayvuXIMufolY:T6T+Rdr46+lNCoQ2/Bmqrayv/oO

Score

7^/10

Malware Config

Targets

- Target
  
  60e535fb4fa0da9ad6925ea08b36b351_JaffaCakes118
- Size
  
  146KB
- MD5
  
  60e535fb4fa0da9ad6925ea08b36b351
- SHA1
  
  d3c9dcc9a1dde52dabd088cd31f4adf03aebee5e
- SHA256
  
  b812ceb9eb6693551a7ff8978c6066cc563340531f815ac38f34696a82b997d1
- SHA512
  
  06b4dbd6f38e4942c950f6df6da4092405123a4c96bdebbec4016b1f3efc0a6fe53e980e1d2269cea60a64d72e04cba519a36a6244ab9b27f57c3bb029bd1aea
- SSDEEP
  
  3072:T6+O+RsMr4xwT+I0WRCIjTYCobhsX0vlJRcWYc+qFrayvuXIMufolY:T6T+Rdr46+lNCoQ2/Bmqrayv/oO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2