454a0f6520b5b880b7edc427ea52b4c47fec946ca4b3b45e31fe07bfcf325736 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b43583b985e29c0d796863b562d1bc72_JaffaCakes118
Size

93KB
Sample

240821-t2n3asseqn
MD5

b43583b985e29c0d796863b562d1bc72
SHA1

f161b38273988ca9ac0758d4e98d980ea108ad54
SHA256

454a0f6520b5b880b7edc427ea52b4c47fec946ca4b3b45e31fe07bfcf325736
SHA512

325c7d809c39d93cf68aa7077785869da108385728cec96442be9e86b6b4fecb74bfb5fd48005ba34422501a3707702ce37fb84c4074dd9ca2652652981580c9
SSDEEP

1536:GwiGqmQVoPsvxPl3oYcl/ikt51h9J7HMUF7TGD+0ICJ6I9UmNFnToIf6HTR3K3bS:GwAoPcBATl5CJ68U6tTBfoTR30bsmksi

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b43583b985e29c0d796863b562d1bc72_JaffaCakes118
- Size
  
  93KB
- MD5
  
  b43583b985e29c0d796863b562d1bc72
- SHA1
  
  f161b38273988ca9ac0758d4e98d980ea108ad54
- SHA256
  
  454a0f6520b5b880b7edc427ea52b4c47fec946ca4b3b45e31fe07bfcf325736
- SHA512
  
  325c7d809c39d93cf68aa7077785869da108385728cec96442be9e86b6b4fecb74bfb5fd48005ba34422501a3707702ce37fb84c4074dd9ca2652652981580c9
- SSDEEP
  
  1536:GwiGqmQVoPsvxPl3oYcl/ikt51h9J7HMUF7TGD+0ICJ6I9UmNFnToIf6HTR3K3bS:GwAoPcBATl5CJ68U6tTBfoTR30bsmksi
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2