b63d26ef8b7352e6f8927d642ffc274091b7ec30ed3a0fb9a2128ea0d6ab6e84 | Triage

Sharing

General

Target

d2449293a44b7285e914995de242d41f_JaffaCakes118
Size

40KB
Sample

240907-s2zy5a1blk
MD5

d2449293a44b7285e914995de242d41f
SHA1

0a0ed17f71ae4a48a4b3b9e065172185048405ad
SHA256

b63d26ef8b7352e6f8927d642ffc274091b7ec30ed3a0fb9a2128ea0d6ab6e84
SHA512

d0be41ebc9e30467e51cf2f1d1e929f86d1dce084df7e4d891a43b9c0cc15eab4f890057fda76fd5c02ec1de2e85885fa3dd4afa5a0c7c802b4f3cb66626e183
SSDEEP

384:tSNYaRe9WSo4uYxQR+bdWkZeJSiQirpNhS6+1OwsCLW1B0xwqL8:IRe9WSoGhZe5QWr86+1NsKW1Ywq

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d2449293a44b7285e914995de242d41f_JaffaCakes118
- Size
  
  40KB
- MD5
  
  d2449293a44b7285e914995de242d41f
- SHA1
  
  0a0ed17f71ae4a48a4b3b9e065172185048405ad
- SHA256
  
  b63d26ef8b7352e6f8927d642ffc274091b7ec30ed3a0fb9a2128ea0d6ab6e84
- SHA512
  
  d0be41ebc9e30467e51cf2f1d1e929f86d1dce084df7e4d891a43b9c0cc15eab4f890057fda76fd5c02ec1de2e85885fa3dd4afa5a0c7c802b4f3cb66626e183
- SSDEEP
  
  384:tSNYaRe9WSo4uYxQR+bdWkZeJSiQirpNhS6+1OwsCLW1B0xwqL8:IRe9WSoGhZe5QWr86+1NsKW1Ywq
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2