59e8889d9847fb23f4062494a9f73a8ba772e39437f2751c8ea87ff6217255ca | Triage

Sharing

General

Target

d2b0f2d801d41c8d5b90567b08c07298_JaffaCakes118
Size

108KB
Sample

240907-ycqxtatdjf
MD5

d2b0f2d801d41c8d5b90567b08c07298
SHA1

d16a86fe9f197122d1d5da25158e1469892dc00b
SHA256

59e8889d9847fb23f4062494a9f73a8ba772e39437f2751c8ea87ff6217255ca
SHA512

8d6b52a49df739db4c3fbcf2d99e2f96cc1a119020e6387a27726e7d7899c02604e183863b6ed3c0e3b495ccef5dc890521d86fda5657b1082df3a2f9b7bf5b2
SSDEEP

3072:KzNWMKKRZYchObK91C8sV6Xmoo4LEpYmHm1jyF:KZuuObR8sVImcyYmGU

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d2b0f2d801d41c8d5b90567b08c07298_JaffaCakes118
- Size
  
  108KB
- MD5
  
  d2b0f2d801d41c8d5b90567b08c07298
- SHA1
  
  d16a86fe9f197122d1d5da25158e1469892dc00b
- SHA256
  
  59e8889d9847fb23f4062494a9f73a8ba772e39437f2751c8ea87ff6217255ca
- SHA512
  
  8d6b52a49df739db4c3fbcf2d99e2f96cc1a119020e6387a27726e7d7899c02604e183863b6ed3c0e3b495ccef5dc890521d86fda5657b1082df3a2f9b7bf5b2
- SSDEEP
  
  3072:KzNWMKKRZYchObK91C8sV6Xmoo4LEpYmHm1jyF:KZuuObR8sVImcyYmGU
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2