6be7dd775b3ac8401a57ca11d7a76b95e1f7b14bb78c4d40053d391d26ccfd91 | Triage

Sharing

General

Target

bddc2c19b13c9574a52f439b5e40282a_JaffaCakes118
Size

175KB
Sample

240824-epk3jssdjc
MD5

bddc2c19b13c9574a52f439b5e40282a
SHA1

f5de7a5cc8f947dc32c4f7c8254ed76042e107a7
SHA256

6be7dd775b3ac8401a57ca11d7a76b95e1f7b14bb78c4d40053d391d26ccfd91
SHA512

de3358e036521eca9f8cf6ad57dd0f75f15dd74342560a1a4c371048b9d73b753941596baafaeb83e345da1bd09a2d20baccb848d9b72c65dd1217dbd1577247
SSDEEP

3072:szNWMKKRZYcVObK91C8sV6Xmoo4LEpYOZgZfYQFwsHEcyFrt9ChGedFsbS5gw:sZuKObR8sVImcyYOGZwQFZHJYChJv

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  bddc2c19b13c9574a52f439b5e40282a_JaffaCakes118
- Size
  
  175KB
- MD5
  
  bddc2c19b13c9574a52f439b5e40282a
- SHA1
  
  f5de7a5cc8f947dc32c4f7c8254ed76042e107a7
- SHA256
  
  6be7dd775b3ac8401a57ca11d7a76b95e1f7b14bb78c4d40053d391d26ccfd91
- SHA512
  
  de3358e036521eca9f8cf6ad57dd0f75f15dd74342560a1a4c371048b9d73b753941596baafaeb83e345da1bd09a2d20baccb848d9b72c65dd1217dbd1577247
- SSDEEP
  
  3072:szNWMKKRZYcVObK91C8sV6Xmoo4LEpYOZgZfYQFwsHEcyFrt9ChGedFsbS5gw:sZuKObR8sVImcyYOGZwQFZHJYChJv
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2