568e05c51259597cf79b633a041ad090588846b95c85f19a847d731c90a11122 | Triage

Sharing

General

Target

8ee3d0dc6700d3c28d044c36e32cf8f9_JaffaCakes118
Size

47KB
Sample

240812-qnbm9sxbld
MD5

8ee3d0dc6700d3c28d044c36e32cf8f9
SHA1

e522a1830bd99e65bd6a2be8a1c31e5e3e262888
SHA256

568e05c51259597cf79b633a041ad090588846b95c85f19a847d731c90a11122
SHA512

9f18b5850b3b706e96642f290b863f94302f4892bb8b752348df5dc1d340c2099685394d7217efbf6fc7bb7a2fb28749b6a918d8116254597a2d1e77ecacdabd
SSDEEP

768:ci/eq5WPOAQwvFC88BGCRq8cF1EPOCkFS3hUA+I+:peqIRQEFT2GeP5yS3OA+I+

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  8ee3d0dc6700d3c28d044c36e32cf8f9_JaffaCakes118
- Size
  
  47KB
- MD5
  
  8ee3d0dc6700d3c28d044c36e32cf8f9
- SHA1
  
  e522a1830bd99e65bd6a2be8a1c31e5e3e262888
- SHA256
  
  568e05c51259597cf79b633a041ad090588846b95c85f19a847d731c90a11122
- SHA512
  
  9f18b5850b3b706e96642f290b863f94302f4892bb8b752348df5dc1d340c2099685394d7217efbf6fc7bb7a2fb28749b6a918d8116254597a2d1e77ecacdabd
- SSDEEP
  
  768:ci/eq5WPOAQwvFC88BGCRq8cF1EPOCkFS3hUA+I+:peqIRQEFT2GeP5yS3OA+I+
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2