d567488c0df5a464780637f19ba8f439260e60807a8aac133caf19a602deed6c | Triage

Sharing

General

Target

eeb0e7c25e011504d8b0494cb76566cd_JaffaCakes118
Size

97KB
Sample

240920-314k2avgra
MD5

eeb0e7c25e011504d8b0494cb76566cd
SHA1

6de68b897ce3eb49fb221ee7a85d12666e88824a
SHA256

d567488c0df5a464780637f19ba8f439260e60807a8aac133caf19a602deed6c
SHA512

36fa4d22ed9c5f5b4792e23b54ff6642a7ab14b2c76a1c855cb10718b141bf78172264f84a8ff8d894f69cc28732acead744d4acf8ca5a2c7d5473e5e474b0ba
SSDEEP

1536:K+Ak2NM+6qbymCcoxC4j6VJ37Kb1byOCVxJMbeV/FkCr/XxXdX1VtJ2eIqS8Al:22coxC4j6VJ3u1byOCVxK0/mCTnDfc3

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  eeb0e7c25e011504d8b0494cb76566cd_JaffaCakes118
- Size
  
  97KB
- MD5
  
  eeb0e7c25e011504d8b0494cb76566cd
- SHA1
  
  6de68b897ce3eb49fb221ee7a85d12666e88824a
- SHA256
  
  d567488c0df5a464780637f19ba8f439260e60807a8aac133caf19a602deed6c
- SHA512
  
  36fa4d22ed9c5f5b4792e23b54ff6642a7ab14b2c76a1c855cb10718b141bf78172264f84a8ff8d894f69cc28732acead744d4acf8ca5a2c7d5473e5e474b0ba
- SSDEEP
  
  1536:K+Ak2NM+6qbymCcoxC4j6VJ37Kb1byOCVxJMbeV/FkCr/XxXdX1VtJ2eIqS8Al:22coxC4j6VJ3u1byOCVxK0/mCTnDfc3
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2