3c9fc05d4ececbb27916a177541724874bf2717428082d13b9d03c3e8ec4e89d | Triage

Sharing

General

Target

6fc39120a450d72989a0caa4ba84290f_JaffaCakes118
Size

119KB
Sample

240725-qqrr9s1cnm
MD5

6fc39120a450d72989a0caa4ba84290f
SHA1

c69b646609a1b56984e65f968b9892556b2f1118
SHA256

3c9fc05d4ececbb27916a177541724874bf2717428082d13b9d03c3e8ec4e89d
SHA512

f00d248b892c3eff40f27e43fb6235017371eef39e4aa68618135f112bb225b896dc218dc49fcc29a9c028531a963358e92717a5ed28684ba60cb85c76fe21b1
SSDEEP

1536:CHXs+01N7VzCS7Y0ubDW0SiKShPXdlRt1Rksk9GdBm8YI6/PFDkF0/lB/Ncc:Cp6ppKGDSxR/DBwrPFIFKn/Ncc

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  6fc39120a450d72989a0caa4ba84290f_JaffaCakes118
- Size
  
  119KB
- MD5
  
  6fc39120a450d72989a0caa4ba84290f
- SHA1
  
  c69b646609a1b56984e65f968b9892556b2f1118
- SHA256
  
  3c9fc05d4ececbb27916a177541724874bf2717428082d13b9d03c3e8ec4e89d
- SHA512
  
  f00d248b892c3eff40f27e43fb6235017371eef39e4aa68618135f112bb225b896dc218dc49fcc29a9c028531a963358e92717a5ed28684ba60cb85c76fe21b1
- SSDEEP
  
  1536:CHXs+01N7VzCS7Y0ubDW0SiKShPXdlRt1Rksk9GdBm8YI6/PFDkF0/lB/Ncc:Cp6ppKGDSxR/DBwrPFIFKn/Ncc
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2