6e57a673a757e1af745b1f6e870eb9d643fbdeeed5f7a9fdf5b8e31630bef0eb | Triage

Sharing

General

Target

eb4f521c253517a42118185ed39872f2_JaffaCakes118
Size

101KB
Sample

240919-pdplpsyblr
MD5

eb4f521c253517a42118185ed39872f2
SHA1

a3004101fd1c6336254dd6bde6551715a4f369b9
SHA256

6e57a673a757e1af745b1f6e870eb9d643fbdeeed5f7a9fdf5b8e31630bef0eb
SHA512

85d070d6aa410ee73c3fb02422ac3dc6be846a031a704378ea401488cb9b3ed9bc2ee7f8243328fd53838e7968d326bd3ce8c95cf730b08830a7d74e13099a4f
SSDEEP

1536:CaJleXQ/05IFeV9jtm80BykH39gjnZAPPDr2WHFvUqJNj2:CSeA/jFe7jtF+XH3GADrVHFvUqJB2

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  eb4f521c253517a42118185ed39872f2_JaffaCakes118
- Size
  
  101KB
- MD5
  
  eb4f521c253517a42118185ed39872f2
- SHA1
  
  a3004101fd1c6336254dd6bde6551715a4f369b9
- SHA256
  
  6e57a673a757e1af745b1f6e870eb9d643fbdeeed5f7a9fdf5b8e31630bef0eb
- SHA512
  
  85d070d6aa410ee73c3fb02422ac3dc6be846a031a704378ea401488cb9b3ed9bc2ee7f8243328fd53838e7968d326bd3ce8c95cf730b08830a7d74e13099a4f
- SSDEEP
  
  1536:CaJleXQ/05IFeV9jtm80BykH39gjnZAPPDr2WHFvUqJNj2:CSeA/jFe7jtF+XH3GADrVHFvUqJB2
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2