65353e6cc9c708301dcc03b33f17a7b196186ae3b4b4459dbef8262a3f4bd372 | Triage

Sharing

General

Target

2c2a25ffe3ec127d6a964dc515582721_JaffaCakes118
Size

4.5MB
Sample

241009-gsv32awfnj
MD5

2c2a25ffe3ec127d6a964dc515582721
SHA1

bbb4e6f96884fcea6dede1af25212ff2dcb6bb0d
SHA256

65353e6cc9c708301dcc03b33f17a7b196186ae3b4b4459dbef8262a3f4bd372
SHA512

c8e531ea72418ad1e230931b3d2a0670b7e9c6a38dd58773e2728d0d1903eaa356a08b1e37dc20752b0fa3681d7e21edcdd3b86165ee45a1aeaa94035da82e4b
SSDEEP

49152:FdRba8fD8qinfMSKJXIUQREV1QOTu1U5ai2VzYo5UC9RhuCTFKlaxV5dgbTnbYZ:C/IJsiCVsop7cTnI/o

Score

7^/10

Malware Config

Targets

- Target
  
  2c2a25ffe3ec127d6a964dc515582721_JaffaCakes118
- Size
  
  4.5MB
- MD5
  
  2c2a25ffe3ec127d6a964dc515582721
- SHA1
  
  bbb4e6f96884fcea6dede1af25212ff2dcb6bb0d
- SHA256
  
  65353e6cc9c708301dcc03b33f17a7b196186ae3b4b4459dbef8262a3f4bd372
- SHA512
  
  c8e531ea72418ad1e230931b3d2a0670b7e9c6a38dd58773e2728d0d1903eaa356a08b1e37dc20752b0fa3681d7e21edcdd3b86165ee45a1aeaa94035da82e4b
- SSDEEP
  
  49152:FdRba8fD8qinfMSKJXIUQREV1QOTu1U5ai2VzYo5UC9RhuCTFKlaxV5dgbTnbYZ:C/IJsiCVsop7cTnI/o
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2