44c0dca121e5d69b42ad732388823619f5f0c57f468bbcf3a6f75ce5f072c0bf | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f56359e7287ddb22c40c23de0d817010_JaffaCakes118
Size

3.4MB
Sample

240925-g44vbasgjd
MD5

f56359e7287ddb22c40c23de0d817010
SHA1

90769ccf3a7f7cc59a8c02869e9d9756d5b15dc7
SHA256

44c0dca121e5d69b42ad732388823619f5f0c57f468bbcf3a6f75ce5f072c0bf
SHA512

8b6b22fe065f825bad9d3460636c930ea658c31eb0b912c5ea62a04055070dd46229aa2846830cb7e5a42075fbde294e3cdc029918281063d05b5f41c1b8355a
SSDEEP

98304:SptrwYFn6qX6/5de54DYrcVVqkyHNDRJ:KX6/3DYeYkif

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f56359e7287ddb22c40c23de0d817010_JaffaCakes118
- Size
  
  3.4MB
- MD5
  
  f56359e7287ddb22c40c23de0d817010
- SHA1
  
  90769ccf3a7f7cc59a8c02869e9d9756d5b15dc7
- SHA256
  
  44c0dca121e5d69b42ad732388823619f5f0c57f468bbcf3a6f75ce5f072c0bf
- SHA512
  
  8b6b22fe065f825bad9d3460636c930ea658c31eb0b912c5ea62a04055070dd46229aa2846830cb7e5a42075fbde294e3cdc029918281063d05b5f41c1b8355a
- SSDEEP
  
  98304:SptrwYFn6qX6/5de54DYrcVVqkyHNDRJ:KX6/3DYeYkif
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2