69dc46050b2e7d74d8da5ad4904856c91efffa64239631b746356696697db5db | Triage

Sharing

General

Target

a8db780ede4f6ce39fba2a2aae43c689_JaffaCakes118
Size

40KB
Sample

240819-av9wmstfmb
MD5

a8db780ede4f6ce39fba2a2aae43c689
SHA1

b198ac6edfe9c48b809e7ad83c476fe372cd3146
SHA256

69dc46050b2e7d74d8da5ad4904856c91efffa64239631b746356696697db5db
SHA512

c75b81f707940cbe3818d52f80e3db3c5136499ece7e9522878d4ddcfff8094e9fdf98565d052fa22fd446750c51948f94d65156dfa01a2396e2151444bd7a8e
SSDEEP

768:tsKL0KOkGlFEinLQ/cTXw6hd5WbynfqI+7MsHeeyol:tsKvIvHk/MbdYjYsHeey0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a8db780ede4f6ce39fba2a2aae43c689_JaffaCakes118
- Size
  
  40KB
- MD5
  
  a8db780ede4f6ce39fba2a2aae43c689
- SHA1
  
  b198ac6edfe9c48b809e7ad83c476fe372cd3146
- SHA256
  
  69dc46050b2e7d74d8da5ad4904856c91efffa64239631b746356696697db5db
- SHA512
  
  c75b81f707940cbe3818d52f80e3db3c5136499ece7e9522878d4ddcfff8094e9fdf98565d052fa22fd446750c51948f94d65156dfa01a2396e2151444bd7a8e
- SSDEEP
  
  768:tsKL0KOkGlFEinLQ/cTXw6hd5WbynfqI+7MsHeeyol:tsKvIvHk/MbdYjYsHeey0
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Checks installed software on the system
  Looks up Uninstall key entries in the registry to enumerate software on the system.
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Subvert Trust Controls

Install Root Certificate

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2