64784041bbe355bd1216cc8b3128118722635a63a53b18a214a72445ab63d38c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a2460f71cb9a682b285ce08b0a7f3a71_JaffaCakes118
Size

728KB
Sample

240817-m4nqzssara
MD5

a2460f71cb9a682b285ce08b0a7f3a71
SHA1

073a9a8843e4e0d3c19d4706dd7cc6923da94711
SHA256

64784041bbe355bd1216cc8b3128118722635a63a53b18a214a72445ab63d38c
SHA512

f28e4f9c6401e9c2e62066bc5f9fdcaf7921d7fa140c02db00ba692a195918ffb2b705bd28236ae2e182136154e56f73adb5e55adfbc7efbba9130b91b99ce75
SSDEEP

12288:TkWAehJuqTcwvWHRYch8gdCdOKWFtzCPZOTMzgxUqvCYeXes2F7yQTIpANrSWk:TkWAAuqIwOHOA8gdO62RJgxpYh+5rpk

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a2460f71cb9a682b285ce08b0a7f3a71_JaffaCakes118
- Size
  
  728KB
- MD5
  
  a2460f71cb9a682b285ce08b0a7f3a71
- SHA1
  
  073a9a8843e4e0d3c19d4706dd7cc6923da94711
- SHA256
  
  64784041bbe355bd1216cc8b3128118722635a63a53b18a214a72445ab63d38c
- SHA512
  
  f28e4f9c6401e9c2e62066bc5f9fdcaf7921d7fa140c02db00ba692a195918ffb2b705bd28236ae2e182136154e56f73adb5e55adfbc7efbba9130b91b99ce75
- SSDEEP
  
  12288:TkWAehJuqTcwvWHRYch8gdCdOKWFtzCPZOTMzgxUqvCYeXes2F7yQTIpANrSWk:TkWAAuqIwOHOA8gdO62RJgxpYh+5rpk
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2