5929cdd4adcb86bee392fb40d9d818ad8bb6ca8eb95f20a3fb811f241d882590 | Triage

Sharing

General

Target

620d5812adab1b259afa3c7cfc1a9420_JaffaCakes118
Size

117KB
Sample

240722-atkkcsvepp
MD5

620d5812adab1b259afa3c7cfc1a9420
SHA1

c85301aac0836da13ec02a12c6ffca7b054d606a
SHA256

5929cdd4adcb86bee392fb40d9d818ad8bb6ca8eb95f20a3fb811f241d882590
SHA512

2dec3d54b7680961d5378155d0b393b234646372908a8b668985022b1b76b60fc2a1644e6ed79375beec6999c1ce22ca0fda2204d70e78b45f5af1f2ecf81dd0
SSDEEP

3072:ZFmI1FY0GrjCsBBdbdmS8gOY0NF4AKVJtrN43ZR:HRaCWdbduNVKVJz2z

Score

7^/10

Malware Config

Targets

- Target
  
  620d5812adab1b259afa3c7cfc1a9420_JaffaCakes118
- Size
  
  117KB
- MD5
  
  620d5812adab1b259afa3c7cfc1a9420
- SHA1
  
  c85301aac0836da13ec02a12c6ffca7b054d606a
- SHA256
  
  5929cdd4adcb86bee392fb40d9d818ad8bb6ca8eb95f20a3fb811f241d882590
- SHA512
  
  2dec3d54b7680961d5378155d0b393b234646372908a8b668985022b1b76b60fc2a1644e6ed79375beec6999c1ce22ca0fda2204d70e78b45f5af1f2ecf81dd0
- SSDEEP
  
  3072:ZFmI1FY0GrjCsBBdbdmS8gOY0NF4AKVJtrN43ZR:HRaCWdbduNVKVJz2z
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2