6aebf2cd7757e7aa10ba59ded388950314e283b8d110ecd2de1f9568bc640755 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

36894bf4aa6637400611d42a4c6dc120_JaffaCakes118
Size

6KB
Sample

241011-ylx3gsvgkl
MD5

36894bf4aa6637400611d42a4c6dc120
SHA1

b27468cf551fd2e7176eededc021a38f910a3aa3
SHA256

6aebf2cd7757e7aa10ba59ded388950314e283b8d110ecd2de1f9568bc640755
SHA512

54f234973c378307a60f33dd4f182a3390671ed0d266ebd927867084b7a3564fce946f1fbd1b7c5e5c3c7b13749836d16dec8f6ccb3fc914679efa5764ed9330
SSDEEP

192:r/1xF50gctUOhAdRlRiEXOQTr2H1zZGK6aX:r/1xFlqU4slj/gZ/6aX

Score

7^/10

discovery execution

Malware Config

Targets

- Target
  
  36894bf4aa6637400611d42a4c6dc120_JaffaCakes118
- Size
  
  6KB
- MD5
  
  36894bf4aa6637400611d42a4c6dc120
- SHA1
  
  b27468cf551fd2e7176eededc021a38f910a3aa3
- SHA256
  
  6aebf2cd7757e7aa10ba59ded388950314e283b8d110ecd2de1f9568bc640755
- SHA512
  
  54f234973c378307a60f33dd4f182a3390671ed0d266ebd927867084b7a3564fce946f1fbd1b7c5e5c3c7b13749836d16dec8f6ccb3fc914679efa5764ed9330
- SSDEEP
  
  192:r/1xF50gctUOhAdRlRiEXOQTr2H1zZGK6aX:r/1xFlqU4slj/gZ/6aX
Score

7^/10

discovery execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryexecution

behavioral2

discoveryexecution