14763d9903c44334c1bc78029783da8e25ec91ad131a8f17f9434ac6a80de152 | Triage

Sharing

General

Target

a5831ec86e6b10fa3b98cb532247f05c_JaffaCakes118
Size

102KB
Sample

240818-ftt2pazelm
MD5

a5831ec86e6b10fa3b98cb532247f05c
SHA1

e238eecf4afa5d3e387e0d88f70fc5c4f8f3f63b
SHA256

14763d9903c44334c1bc78029783da8e25ec91ad131a8f17f9434ac6a80de152
SHA512

4f6590d5b6e9fdd00bf4c28472fb5fe8650649508022c4802e53c139f1fe717adf66daa312e8dd4430a8619a3d4b03ded6975ab30c9e112b8f752c626a5b3272
SSDEEP

3072:twxVMhOC/dTDbq91+mno3t4QZQ3rt8iJkP:tTfFDbRnOTrt5JE

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a5831ec86e6b10fa3b98cb532247f05c_JaffaCakes118
- Size
  
  102KB
- MD5
  
  a5831ec86e6b10fa3b98cb532247f05c
- SHA1
  
  e238eecf4afa5d3e387e0d88f70fc5c4f8f3f63b
- SHA256
  
  14763d9903c44334c1bc78029783da8e25ec91ad131a8f17f9434ac6a80de152
- SHA512
  
  4f6590d5b6e9fdd00bf4c28472fb5fe8650649508022c4802e53c139f1fe717adf66daa312e8dd4430a8619a3d4b03ded6975ab30c9e112b8f752c626a5b3272
- SSDEEP
  
  3072:twxVMhOC/dTDbq91+mno3t4QZQ3rt8iJkP:tTfFDbRnOTrt5JE
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2