af8d9ed49d001bcb3863e7fd337552bb365630ee2fa647ab3915e6f986cd39ef | Triage

Sharing

Copy URL Twitter E-mail

General

Target

2c29da1636214f42f1f7dce2e400c52f_JaffaCakes118
Size

522KB
Sample

241009-gslvcswfml
MD5

2c29da1636214f42f1f7dce2e400c52f
SHA1

3d940b87e9dbd277218a292ffa99c1667c51a8bf
SHA256

af8d9ed49d001bcb3863e7fd337552bb365630ee2fa647ab3915e6f986cd39ef
SHA512

abcb0cdc747bb72712be982f3eea93029c2a81c7fd7bde54ccf04d9977f7105432373e6e8d30ee7cfc18a5c8fe0b9a706d0e09c5d1b2d80a384f79e23e855742
SSDEEP

6144:uEgX+IfRY15YvtyPgaaGM2DIjvPuN9J3NGFy/8m+/vQX2G97K51heLCNMlwKgF:uJRY15StxaHM2Mz0JxmQG8eSLWLFF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  2c29da1636214f42f1f7dce2e400c52f_JaffaCakes118
- Size
  
  522KB
- MD5
  
  2c29da1636214f42f1f7dce2e400c52f
- SHA1
  
  3d940b87e9dbd277218a292ffa99c1667c51a8bf
- SHA256
  
  af8d9ed49d001bcb3863e7fd337552bb365630ee2fa647ab3915e6f986cd39ef
- SHA512
  
  abcb0cdc747bb72712be982f3eea93029c2a81c7fd7bde54ccf04d9977f7105432373e6e8d30ee7cfc18a5c8fe0b9a706d0e09c5d1b2d80a384f79e23e855742
- SSDEEP
  
  6144:uEgX+IfRY15YvtyPgaaGM2DIjvPuN9J3NGFy/8m+/vQX2G97K51heLCNMlwKgF:uJRY15StxaHM2Mz0JxmQG8eSLWLFF
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2