f646dc858810ff1de75abccba60fabe8c4287f92b2b73c9d754fdca7a56d1975 | Triage

Sharing

General

Target

6ab191a23003b00c389a688fabd94fe8_JaffaCakes118
Size

112KB
Sample

240724-hzpp9stflp
MD5

6ab191a23003b00c389a688fabd94fe8
SHA1

1b41329c249aa564986db6f4bf93b5fb9d088e13
SHA256

f646dc858810ff1de75abccba60fabe8c4287f92b2b73c9d754fdca7a56d1975
SHA512

b389c0b747fde5ad7e9ffccd9e43cbffa9cb1ba8a3b68f4c14a6d6ae0dfbbc561ca337e063eaf7004b0afcf80ec9129cecd240c79e44643726d24cc55a2fb101
SSDEEP

1536:8O/z6hPABUjO/Zd1716EoLiL4l1HdIaqQPDm0xK8i6f0Zn9PRVW8sW45oCCYA7q8:lzgjO/Zd1RePDmZ8tf05iW4u7YAmyPTd

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6ab191a23003b00c389a688fabd94fe8_JaffaCakes118
- Size
  
  112KB
- MD5
  
  6ab191a23003b00c389a688fabd94fe8
- SHA1
  
  1b41329c249aa564986db6f4bf93b5fb9d088e13
- SHA256
  
  f646dc858810ff1de75abccba60fabe8c4287f92b2b73c9d754fdca7a56d1975
- SHA512
  
  b389c0b747fde5ad7e9ffccd9e43cbffa9cb1ba8a3b68f4c14a6d6ae0dfbbc561ca337e063eaf7004b0afcf80ec9129cecd240c79e44643726d24cc55a2fb101
- SSDEEP
  
  1536:8O/z6hPABUjO/Zd1716EoLiL4l1HdIaqQPDm0xK8i6f0Zn9PRVW8sW45oCCYA7q8:lzgjO/Zd1RePDmZ8tf05iW4u7YAmyPTd
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2