68057b3db60624a0eb70b73e220bb3ce6ea106a2e7b22e97a1d0dd1b5c72fdb0 | Triage

Sharing

General

Target

fa98e9fc0f35dc36b327752447df84b7_JaffaCakes118
Size

17KB
Sample

240419-stvpfafg54
MD5

fa98e9fc0f35dc36b327752447df84b7
SHA1

bfdf0f38db4ca9c914a6d31d3da152984e6f55a1
SHA256

68057b3db60624a0eb70b73e220bb3ce6ea106a2e7b22e97a1d0dd1b5c72fdb0
SHA512

ccedad481d9509629c4358acddae9c7b51b47b982f721c8be872bffbfa71a192f600d69e30dc3dbb0a56f8e5b06a89ebf6302c32199ee26f10f5e6993d82bd8a
SSDEEP

384:PwlApAQ2fy9FY4mNxKMKbVVr3rcC3OiEXqJ6lXEX2TtW3k:Ils2fy9FrCKbV5cziE6MlXEO

Score

7^/10

Malware Config

Targets

- Target
  
  fa98e9fc0f35dc36b327752447df84b7_JaffaCakes118
- Size
  
  17KB
- MD5
  
  fa98e9fc0f35dc36b327752447df84b7
- SHA1
  
  bfdf0f38db4ca9c914a6d31d3da152984e6f55a1
- SHA256
  
  68057b3db60624a0eb70b73e220bb3ce6ea106a2e7b22e97a1d0dd1b5c72fdb0
- SHA512
  
  ccedad481d9509629c4358acddae9c7b51b47b982f721c8be872bffbfa71a192f600d69e30dc3dbb0a56f8e5b06a89ebf6302c32199ee26f10f5e6993d82bd8a
- SSDEEP
  
  384:PwlApAQ2fy9FY4mNxKMKbVVr3rcC3OiEXqJ6lXEX2TtW3k:Ils2fy9FrCKbV5cziE6MlXEO
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2