524d846bf537ce77ff9cac04fdc1166b772a1a18e6dc503a2b264f5b873afc9c | Triage

Sharing

Copy URL Twitter E-mail

General

Target

26c885b10dbd49a5576daa95f7bfd596_JaffaCakes118
Size

48KB
Sample

241008-21hg5azhja
MD5

26c885b10dbd49a5576daa95f7bfd596
SHA1

4c64899b393fe85535a22e0b752a655d443db83f
SHA256

524d846bf537ce77ff9cac04fdc1166b772a1a18e6dc503a2b264f5b873afc9c
SHA512

095c1e225ddf1e3821fff817fe1d680100a6009b3a21eaa8934443b27347827803fd913a37907c9588ffb44d01cb53ff5152fb9b0a396ea9d9d3ea511882cfcc
SSDEEP

768:WPx7jsfzpg+pMQ5CQ5UrnhA1X87n7rjkqDCyT:WPx7jIzj4A1X8z7vk6Cq

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  26c885b10dbd49a5576daa95f7bfd596_JaffaCakes118
- Size
  
  48KB
- MD5
  
  26c885b10dbd49a5576daa95f7bfd596
- SHA1
  
  4c64899b393fe85535a22e0b752a655d443db83f
- SHA256
  
  524d846bf537ce77ff9cac04fdc1166b772a1a18e6dc503a2b264f5b873afc9c
- SHA512
  
  095c1e225ddf1e3821fff817fe1d680100a6009b3a21eaa8934443b27347827803fd913a37907c9588ffb44d01cb53ff5152fb9b0a396ea9d9d3ea511882cfcc
- SSDEEP
  
  768:WPx7jsfzpg+pMQ5CQ5UrnhA1X87n7rjkqDCyT:WPx7jIzj4A1X8z7vk6Cq
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Enumerates processes with tasklist
  discovery
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Process Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2