1412da7fa9589d9d981d69046f1e2897828f207736fde207a75c9b94de3b6ccd | Triage

Sharing

General

Target

a985de3cd2909ff97413dfdd0b8a290d_JaffaCakes118
Size

553KB
Sample

240819-epmw5stbpa
MD5

a985de3cd2909ff97413dfdd0b8a290d
SHA1

23eef53952d4695cc1f20607dfb7ff04811ce8a3
SHA256

1412da7fa9589d9d981d69046f1e2897828f207736fde207a75c9b94de3b6ccd
SHA512

ef45dbe7198d7734835f74f83badfd3b9030f473ede5e6cbbcdde06eb6ee80e0296b1afa03dbf6f04e991969f349d5e275aee75062e6057d06a5a055ccf79db8
SSDEEP

12288:0tUOVEQilo740/OlnoJPdRdmAd2GyL056XmZhWoD/Oe:YVE/uOlnO9mAd2Gm0NhnOe

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a985de3cd2909ff97413dfdd0b8a290d_JaffaCakes118
- Size
  
  553KB
- MD5
  
  a985de3cd2909ff97413dfdd0b8a290d
- SHA1
  
  23eef53952d4695cc1f20607dfb7ff04811ce8a3
- SHA256
  
  1412da7fa9589d9d981d69046f1e2897828f207736fde207a75c9b94de3b6ccd
- SHA512
  
  ef45dbe7198d7734835f74f83badfd3b9030f473ede5e6cbbcdde06eb6ee80e0296b1afa03dbf6f04e991969f349d5e275aee75062e6057d06a5a055ccf79db8
- SSDEEP
  
  12288:0tUOVEQilo740/OlnoJPdRdmAd2GyL056XmZhWoD/Oe:YVE/uOlnO9mAd2Gm0NhnOe
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2