a3ff809b077200f747db54ef9cf87c9d046521657bc89d2e10434a4424f35e2b | Triage

Sharing

Copy URL Twitter E-mail

General

Target

55b3f7464fc3a6e8fba038194dc9d7ee_JaffaCakes118
Size

32KB
Sample

241018-f56jvszdkh
MD5

55b3f7464fc3a6e8fba038194dc9d7ee
SHA1

eb9970a1549e4dc203731f66dd5d4450eaae779a
SHA256

a3ff809b077200f747db54ef9cf87c9d046521657bc89d2e10434a4424f35e2b
SHA512

046d23f763a2b3d6cf18a22c6f4708439366acd6f9f96541c11059d7a40e5daf97381ea9af1cf8f061112dc5ee0a72c5a82244ad194e6f02eb79a90d83d0f2c5
SSDEEP

384:1YE9npV1zml7/T/Lc+q+bwoSSLLnAnVQ3hL5tVTcyY78JjNhyf678bM:6E9pVpwLjLvq+UYHl3vtSyY7kQ48bM

Score

7^/10

discovery execution

Malware Config

Targets

- Target
  
  55b3f7464fc3a6e8fba038194dc9d7ee_JaffaCakes118
- Size
  
  32KB
- MD5
  
  55b3f7464fc3a6e8fba038194dc9d7ee
- SHA1
  
  eb9970a1549e4dc203731f66dd5d4450eaae779a
- SHA256
  
  a3ff809b077200f747db54ef9cf87c9d046521657bc89d2e10434a4424f35e2b
- SHA512
  
  046d23f763a2b3d6cf18a22c6f4708439366acd6f9f96541c11059d7a40e5daf97381ea9af1cf8f061112dc5ee0a72c5a82244ad194e6f02eb79a90d83d0f2c5
- SSDEEP
  
  384:1YE9npV1zml7/T/Lc+q+bwoSSLLnAnVQ3hL5tVTcyY78JjNhyf678bM:6E9pVpwLjLvq+UYHl3vtSyY7kQ48bM
Score

7^/10

discovery execution
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Command and Scripting Interpreter

JavaScript

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryexecution

behavioral2

discoveryexecution