589e0656e135b5c9132cd131461601d87c37b1eea6b5339e07ec74198e83f347 | Triage

Sharing

General

Target

89bb82bff3006187fa38ed4472cea159_JaffaCakes118
Size

80KB
Sample

240811-kqpd9awhmf
MD5

89bb82bff3006187fa38ed4472cea159
SHA1

f3ef9fd680f079bb7869ff1539b77bb83c29a22c
SHA256

589e0656e135b5c9132cd131461601d87c37b1eea6b5339e07ec74198e83f347
SHA512

4b823f9348508d77d0ff07465a25af3939edcf39b1d7fb2538ee315494d45d421a8a8463bcdff201cfb12afe9a21b8e17211cca1ee308ab55b59b583561de3c4
SSDEEP

1536:or2WYlpCRARQIsXn+tU9e3kcT/3tCaTYlmupeBS9oQBDCUvY8:on8pmARQNXEUcLdvYHpeBS91DRg8

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  89bb82bff3006187fa38ed4472cea159_JaffaCakes118
- Size
  
  80KB
- MD5
  
  89bb82bff3006187fa38ed4472cea159
- SHA1
  
  f3ef9fd680f079bb7869ff1539b77bb83c29a22c
- SHA256
  
  589e0656e135b5c9132cd131461601d87c37b1eea6b5339e07ec74198e83f347
- SHA512
  
  4b823f9348508d77d0ff07465a25af3939edcf39b1d7fb2538ee315494d45d421a8a8463bcdff201cfb12afe9a21b8e17211cca1ee308ab55b59b583561de3c4
- SSDEEP
  
  1536:or2WYlpCRARQIsXn+tU9e3kcT/3tCaTYlmupeBS9oQBDCUvY8:on8pmARQNXEUcLdvYHpeBS91DRg8
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2