e37f4930396a6c6ff023ae991cfd1eb4756e31895d40d7985766f14c4a5fd2f0 | Triage

Sharing

General

Target

a81c6055ae32366b64dc07e53c7f80be_JaffaCakes118
Size

188KB
Sample

240818-zbq2vswckl
MD5

a81c6055ae32366b64dc07e53c7f80be
SHA1

48bcdbc6f8f615c0342cf1366c4c7ed36415c42e
SHA256

e37f4930396a6c6ff023ae991cfd1eb4756e31895d40d7985766f14c4a5fd2f0
SHA512

8c6db2eec3df69e4bba6f8501d52823cba257a738ced83cf2c06d767d171099f605e3a0081ba86ac360a83adfb9feb33be766f72fb9ef607fdc1cbec2030d467
SSDEEP

3072:zc+kf+kf4Yz2x2m1xk5SEcQ/pKq0gV6h2A/teAkOIHNS+P5:I+kmkTol1xk5Sa/pKq0jh2+eAkVEu

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a81c6055ae32366b64dc07e53c7f80be_JaffaCakes118
- Size
  
  188KB
- MD5
  
  a81c6055ae32366b64dc07e53c7f80be
- SHA1
  
  48bcdbc6f8f615c0342cf1366c4c7ed36415c42e
- SHA256
  
  e37f4930396a6c6ff023ae991cfd1eb4756e31895d40d7985766f14c4a5fd2f0
- SHA512
  
  8c6db2eec3df69e4bba6f8501d52823cba257a738ced83cf2c06d767d171099f605e3a0081ba86ac360a83adfb9feb33be766f72fb9ef607fdc1cbec2030d467
- SSDEEP
  
  3072:zc+kf+kf4Yz2x2m1xk5SEcQ/pKq0gV6h2A/teAkOIHNS+P5:I+kmkTol1xk5Sa/pKq0jh2+eAkVEu
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2