cee39d68c9f3c3e7495dd9fcc3757593dc9b23dcc1ab1a86f950b0a5bbbe5c51 | Triage

Sharing

General

Target

82f8a4d0c9bd3d8f70979fe506aba2a9_JaffaCakes118
Size

798KB
Sample

240802-eptdxszcra
MD5

82f8a4d0c9bd3d8f70979fe506aba2a9
SHA1

306982e9b37726b56ed639287c6015d11b70f5b9
SHA256

cee39d68c9f3c3e7495dd9fcc3757593dc9b23dcc1ab1a86f950b0a5bbbe5c51
SHA512

bd0fbb323188b211af957f33f92a917c10085bf4eb6134f3cacfd31b4c24734c2e05f3c6fc23f6bfc98c4d385c0acd66a267b7ccf3a459ffa14d0e2754ff10e3
SSDEEP

24576:JUWqistD2M4gaIySmDABwQza9la2kfq1D8RcQH:JUUu4tYBwm0bkMgc8

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  82f8a4d0c9bd3d8f70979fe506aba2a9_JaffaCakes118
- Size
  
  798KB
- MD5
  
  82f8a4d0c9bd3d8f70979fe506aba2a9
- SHA1
  
  306982e9b37726b56ed639287c6015d11b70f5b9
- SHA256
  
  cee39d68c9f3c3e7495dd9fcc3757593dc9b23dcc1ab1a86f950b0a5bbbe5c51
- SHA512
  
  bd0fbb323188b211af957f33f92a917c10085bf4eb6134f3cacfd31b4c24734c2e05f3c6fc23f6bfc98c4d385c0acd66a267b7ccf3a459ffa14d0e2754ff10e3
- SSDEEP
  
  24576:JUWqistD2M4gaIySmDABwQza9la2kfq1D8RcQH:JUUu4tYBwm0bkMgc8
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2