8c8226f3b21a8071d57e8a3dd96cb553ef269ed7522901356fa3b155b6864feb | Triage

Sharing

General

Target

d5beb1da0005cb3d68a208c201e35920_JaffaCakes118
Size

706KB
Sample

240909-gjxv9sthqm
MD5

d5beb1da0005cb3d68a208c201e35920
SHA1

ad01c4649d6dad5c075b71c468eaa90e0dd87bab
SHA256

8c8226f3b21a8071d57e8a3dd96cb553ef269ed7522901356fa3b155b6864feb
SHA512

ec01eb8b265eecae447c2fa0e1bd83c6a110811735f585f62365e7be8aabea3f908a8756c50a0252aace659e56b94ebbd1a443cd0faeee4d95f729b387adc22f
SSDEEP

12288:gp/iN/mlVdtvrYeyZJf7kPK+iqBZn+D73iKHeGspVquFTNf58+DtpWrrqOaX:gpQ/6trYlvYPK+lqD73TeGspEujzDfmG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d5beb1da0005cb3d68a208c201e35920_JaffaCakes118
- Size
  
  706KB
- MD5
  
  d5beb1da0005cb3d68a208c201e35920
- SHA1
  
  ad01c4649d6dad5c075b71c468eaa90e0dd87bab
- SHA256
  
  8c8226f3b21a8071d57e8a3dd96cb553ef269ed7522901356fa3b155b6864feb
- SHA512
  
  ec01eb8b265eecae447c2fa0e1bd83c6a110811735f585f62365e7be8aabea3f908a8756c50a0252aace659e56b94ebbd1a443cd0faeee4d95f729b387adc22f
- SSDEEP
  
  12288:gp/iN/mlVdtvrYeyZJf7kPK+iqBZn+D73iKHeGspVquFTNf58+DtpWrrqOaX:gpQ/6trYlvYPK+lqD73TeGspEujzDfmG
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2