3d6026b608127d1be80967e4bb72c435849a8bf4a29a0a2f362cfa67b96e55da | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d52d140f5a9fc17c8a39f899c9078d4e_JaffaCakes118
Size

1.6MB
Sample

240908-13ptjsxfqr
MD5

d52d140f5a9fc17c8a39f899c9078d4e
SHA1

787a3f2b9ccf5b75dac66ee6a713c7f0379911ad
SHA256

3d6026b608127d1be80967e4bb72c435849a8bf4a29a0a2f362cfa67b96e55da
SHA512

6d59936772ed5fcedec1e611c707aa0b26161e56da7ce1ef63cd03caac7a101b88b2d4b53c1ed64594c0c3855c2255f6162c4f47f6ea56b00413850befb77b9d
SSDEEP

49152:GJwukiAFOrk6TXh1/7xUOLRTlpS+JOiwKTH9P:GO6Tx1DL4N0

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  d52d140f5a9fc17c8a39f899c9078d4e_JaffaCakes118
- Size
  
  1.6MB
- MD5
  
  d52d140f5a9fc17c8a39f899c9078d4e
- SHA1
  
  787a3f2b9ccf5b75dac66ee6a713c7f0379911ad
- SHA256
  
  3d6026b608127d1be80967e4bb72c435849a8bf4a29a0a2f362cfa67b96e55da
- SHA512
  
  6d59936772ed5fcedec1e611c707aa0b26161e56da7ce1ef63cd03caac7a101b88b2d4b53c1ed64594c0c3855c2255f6162c4f47f6ea56b00413850befb77b9d
- SSDEEP
  
  49152:GJwukiAFOrk6TXh1/7xUOLRTlpS+JOiwKTH9P:GO6Tx1DL4N0
Score

5^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2