f3fb5dc933c775cd39cf91ea88d532d5dc412c0878b6f40566c93078fe54a5f0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

cfd7fb6cda0e632db6b6e207054b5c6e_JaffaCakes118
Size

1.6MB
Sample

240906-ss225atdjn
MD5

cfd7fb6cda0e632db6b6e207054b5c6e
SHA1

4fef277781cc71b43640f073377e99b03ffca6de
SHA256

f3fb5dc933c775cd39cf91ea88d532d5dc412c0878b6f40566c93078fe54a5f0
SHA512

257fc3d3c2b43f3b4eac29db57e07033943fdac47139167d19e8afa17b300e8177d3b94e8f211c72e99519eaed399990b6d21e220441330e6c2b97f20fc61a87
SSDEEP

49152:YZgu8rAi+3USz3h1/XBkThdTlpSuxQxN9dT4S9M:YGIjR1Oh0Tg

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  cfd7fb6cda0e632db6b6e207054b5c6e_JaffaCakes118
- Size
  
  1.6MB
- MD5
  
  cfd7fb6cda0e632db6b6e207054b5c6e
- SHA1
  
  4fef277781cc71b43640f073377e99b03ffca6de
- SHA256
  
  f3fb5dc933c775cd39cf91ea88d532d5dc412c0878b6f40566c93078fe54a5f0
- SHA512
  
  257fc3d3c2b43f3b4eac29db57e07033943fdac47139167d19e8afa17b300e8177d3b94e8f211c72e99519eaed399990b6d21e220441330e6c2b97f20fc61a87
- SSDEEP
  
  49152:YZgu8rAi+3USz3h1/XBkThdTlpSuxQxN9dT4S9M:YGIjR1Oh0Tg
Score

5^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2