00977895427b7e70c52440fab79382ee17d5504be8950ba530ca41f97f5d4c13 | Triage

Sharing

General

Target

d6e1cfbedc7610c42a822d22fd20f884_JaffaCakes118
Size

580KB
Sample

240909-w774gavfpa
MD5

d6e1cfbedc7610c42a822d22fd20f884
SHA1

1af1b504b7e7fe0cbfa15d05245d87edd428315f
SHA256

00977895427b7e70c52440fab79382ee17d5504be8950ba530ca41f97f5d4c13
SHA512

1fdaa9afbb396bbf67ed7cdd2e09d6892744b6298d1f230a4588884118d4c8e48d07c777466589b7232338e474648369a736188798235b7f55a5f782c208fd82
SSDEEP

12288:VauR+QErwDY0GRsWymv/BCSX7YfOLRj9Um:VauR+Q1kBymvZCSX7YEmm

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d6e1cfbedc7610c42a822d22fd20f884_JaffaCakes118
- Size
  
  580KB
- MD5
  
  d6e1cfbedc7610c42a822d22fd20f884
- SHA1
  
  1af1b504b7e7fe0cbfa15d05245d87edd428315f
- SHA256
  
  00977895427b7e70c52440fab79382ee17d5504be8950ba530ca41f97f5d4c13
- SHA512
  
  1fdaa9afbb396bbf67ed7cdd2e09d6892744b6298d1f230a4588884118d4c8e48d07c777466589b7232338e474648369a736188798235b7f55a5f782c208fd82
- SSDEEP
  
  12288:VauR+QErwDY0GRsWymv/BCSX7YfOLRj9Um:VauR+Q1kBymvZCSX7YEmm
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2