b3aa9e85dabd5de8af0005182359662ff0cdaff24fc9053d1714cb7241d0e9f1 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

bc54f6021bcf37cd41ad8c524dd5583b_JaffaCakes118
Size

40KB
Sample

240823-sz8hgsverl
MD5

bc54f6021bcf37cd41ad8c524dd5583b
SHA1

b6254031f3d220d6dac5bbf0fb92802110d09cd9
SHA256

b3aa9e85dabd5de8af0005182359662ff0cdaff24fc9053d1714cb7241d0e9f1
SHA512

de647b0297508bb481a116ad1f4093b04c782e6974ac6177de931958602b3d9b4bc81b59fab86247760b3f8d7722a2f91bdf15416263885ddeeb31b4e6efaa51
SSDEEP

768:9kRRLWJHgr9lx+tidYI+4hmDU4COMx6uqhZSMBOA6ObpMr2AAaWa5:9SpWJAr9lVYz4MWOxRCWOwXA9Wi

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  bc54f6021bcf37cd41ad8c524dd5583b_JaffaCakes118
- Size
  
  40KB
- MD5
  
  bc54f6021bcf37cd41ad8c524dd5583b
- SHA1
  
  b6254031f3d220d6dac5bbf0fb92802110d09cd9
- SHA256
  
  b3aa9e85dabd5de8af0005182359662ff0cdaff24fc9053d1714cb7241d0e9f1
- SHA512
  
  de647b0297508bb481a116ad1f4093b04c782e6974ac6177de931958602b3d9b4bc81b59fab86247760b3f8d7722a2f91bdf15416263885ddeeb31b4e6efaa51
- SSDEEP
  
  768:9kRRLWJHgr9lx+tidYI+4hmDU4COMx6uqhZSMBOA6ObpMr2AAaWa5:9SpWJAr9lVYz4MWOxRCWOwXA9Wi
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2