04d7c0ca976c8365b65063003cfcbefb4897430413bd76cf0e1853ae4a676e7f | Triage

Sharing

General

Target

d4cf2cce980d578636aa3fb4422dbf44_JaffaCakes118
Size

191KB
Sample

240908-t7bddswfpk
MD5

d4cf2cce980d578636aa3fb4422dbf44
SHA1

954a3da1ba7c5b4681357ebdcfd10868498fbac1
SHA256

04d7c0ca976c8365b65063003cfcbefb4897430413bd76cf0e1853ae4a676e7f
SHA512

362a429889fdaa80f626224fd721ad8a744edd252b8e72444a4ed681fed8cb7801f9f3874b4a62fcd0fc6f81967002cfcc5f99eb7036f2e1bfdac542606cb60c
SSDEEP

3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dE:HAVySV1eY4k437d+4wkTHdS2c

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d4cf2cce980d578636aa3fb4422dbf44_JaffaCakes118
- Size
  
  191KB
- MD5
  
  d4cf2cce980d578636aa3fb4422dbf44
- SHA1
  
  954a3da1ba7c5b4681357ebdcfd10868498fbac1
- SHA256
  
  04d7c0ca976c8365b65063003cfcbefb4897430413bd76cf0e1853ae4a676e7f
- SHA512
  
  362a429889fdaa80f626224fd721ad8a744edd252b8e72444a4ed681fed8cb7801f9f3874b4a62fcd0fc6f81967002cfcc5f99eb7036f2e1bfdac542606cb60c
- SSDEEP
  
  3072:HADWbKzKbQmSVdSme+xmJyD4BliqzsmmEpEmboQd+ccewkyeZyYPuvGCJ30EZ0dE:HAVySV1eY4k437d+4wkTHdS2c
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2