f4114c886b882aded98bce5a5d1b7c420eead126676e57269b1fb3f0736ee5af | Triage

Sharing

General

Target

b62dbb02da54f956ca470e96ae40a177_JaffaCakes118
Size

240KB
Sample

240822-d13ajazdnq
MD5

b62dbb02da54f956ca470e96ae40a177
SHA1

c3adc1eb4b03c527e4262ec33670c21364aa05cf
SHA256

f4114c886b882aded98bce5a5d1b7c420eead126676e57269b1fb3f0736ee5af
SHA512

015f48467b0d7e0b318ae09455b70bdd7215fb1e0a1fb459dfdcc4d5cb67672de5f0ee8067bc9d0fc281709e5798ea9b675896ab6c779bf914a53fb0bc716396
SSDEEP

3072:eqzhsX+Yq7CO/G890nRJwHsoVrGNB355KfCtEcOZ+mwuHrmlhI5o1hI:/sX4Ju890noHbYJMWETPHrmnI5o

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b62dbb02da54f956ca470e96ae40a177_JaffaCakes118
- Size
  
  240KB
- MD5
  
  b62dbb02da54f956ca470e96ae40a177
- SHA1
  
  c3adc1eb4b03c527e4262ec33670c21364aa05cf
- SHA256
  
  f4114c886b882aded98bce5a5d1b7c420eead126676e57269b1fb3f0736ee5af
- SHA512
  
  015f48467b0d7e0b318ae09455b70bdd7215fb1e0a1fb459dfdcc4d5cb67672de5f0ee8067bc9d0fc281709e5798ea9b675896ab6c779bf914a53fb0bc716396
- SSDEEP
  
  3072:eqzhsX+Yq7CO/G890nRJwHsoVrGNB355KfCtEcOZ+mwuHrmlhI5o1hI:/sX4Ju890noHbYJMWETPHrmnI5o
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2