f0403b72fe04e215dfbb3fbbc197df2de592f05243ce6c1a88f446bbcd40a979 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f5f67b765bbcc537004887de4b14189a_JaffaCakes118
Size

21KB
Sample

240417-rkxl1ach4v
MD5

f5f67b765bbcc537004887de4b14189a
SHA1

6088ef1fcd279040fa2432cdb0212dff73f07fef
SHA256

f0403b72fe04e215dfbb3fbbc197df2de592f05243ce6c1a88f446bbcd40a979
SHA512

b0a1fc012e9462830e8ddb817a4df4e638b003267563f7d0dd180211c9050dbdb241e6c202e67662a28e7dfe662b52a8bedf4f48750cd6384d8315d79b28d866
SSDEEP

384:5/10ExxGQMR+ozklGfPv1ztpKlUhZ5Q+Zscn3KTOtVfsecbNiEXDIDWOlnfWjvOZ:d10ExxGFRilOFztpKl6Z5Q+FgOtVsecO

Score

7^/10

Malware Config

Targets

- Target
  
  f5f67b765bbcc537004887de4b14189a_JaffaCakes118
- Size
  
  21KB
- MD5
  
  f5f67b765bbcc537004887de4b14189a
- SHA1
  
  6088ef1fcd279040fa2432cdb0212dff73f07fef
- SHA256
  
  f0403b72fe04e215dfbb3fbbc197df2de592f05243ce6c1a88f446bbcd40a979
- SHA512
  
  b0a1fc012e9462830e8ddb817a4df4e638b003267563f7d0dd180211c9050dbdb241e6c202e67662a28e7dfe662b52a8bedf4f48750cd6384d8315d79b28d866
- SSDEEP
  
  384:5/10ExxGQMR+ozklGfPv1ztpKlUhZ5Q+Zscn3KTOtVfsecbNiEXDIDWOlnfWjvOZ:d10ExxGFRilOFztpKl6Z5Q+FgOtVsecO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2