fe08efa5fa5fc153fa2db58eb79c78d4cbfda68e431f7efcfb0629bd15e8fee4 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f541e70cfcb1df9b4244e22a33bf6912_JaffaCakes118
Size

1.6MB
Sample

240925-ftm85sxaln
MD5

f541e70cfcb1df9b4244e22a33bf6912
SHA1

d45437318442b4a3cac9e0a8852f0e8bc9685d6f
SHA256

fe08efa5fa5fc153fa2db58eb79c78d4cbfda68e431f7efcfb0629bd15e8fee4
SHA512

07536fb06415ed229d2a3505816ad9e43b8146eee10ff1874e93634fbe1585e42252f737158970444c1f8b82bf3faf812658f37b9f54240e6bf49b9da128dc7c
SSDEEP

49152:fZgu8rAi+3USz3h1/XBkThdTlpSuxQxN9dT4S9C:fGIjR1Oh0Tu

Score

5^/10

discovery

Malware Config

Targets

- Target
  
  f541e70cfcb1df9b4244e22a33bf6912_JaffaCakes118
- Size
  
  1.6MB
- MD5
  
  f541e70cfcb1df9b4244e22a33bf6912
- SHA1
  
  d45437318442b4a3cac9e0a8852f0e8bc9685d6f
- SHA256
  
  fe08efa5fa5fc153fa2db58eb79c78d4cbfda68e431f7efcfb0629bd15e8fee4
- SHA512
  
  07536fb06415ed229d2a3505816ad9e43b8146eee10ff1874e93634fbe1585e42252f737158970444c1f8b82bf3faf812658f37b9f54240e6bf49b9da128dc7c
- SSDEEP
  
  49152:fZgu8rAi+3USz3h1/XBkThdTlpSuxQxN9dT4S9C:fGIjR1Oh0Tu
Score

5^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

Remote System Discovery

System Information Discovery

System Location Discovery

System Language Discovery

System Network Configuration Discovery

Internet Connection Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2