64940ebd8a544caa403b7b07892816255c28134eeb7eba9f3f95e72be3c49fbc | Triage

Sharing

General

Target

fbfe83671d8df87e93957d2e3b91a118_JaffaCakes118
Size

94KB
Sample

240420-fr44wahc58
MD5

fbfe83671d8df87e93957d2e3b91a118
SHA1

e1e8b68a341f88be30d14eff715bd8df2c9be591
SHA256

64940ebd8a544caa403b7b07892816255c28134eeb7eba9f3f95e72be3c49fbc
SHA512

d85d1c16b4f3c02874fbd2a4c1740a4cdbf64b7cbf6e577d6ee1bae261ac7a28c6d0a73b9ff9eed9c5d4c5b234daea5932035aee8b6aed39b93af36eff33eb4c
SSDEEP

1536:Hfg+M2Y9oH+cpTKeyaI0Z/od8bDbRvU5yYeVYXrgITAGXBB3exYEjpepikFIy:HfgyY9oH+cTKGI0Z/oooeVYXrgI0GXW4

Score

7^/10

Malware Config

Targets

- Target
  
  fbfe83671d8df87e93957d2e3b91a118_JaffaCakes118
- Size
  
  94KB
- MD5
  
  fbfe83671d8df87e93957d2e3b91a118
- SHA1
  
  e1e8b68a341f88be30d14eff715bd8df2c9be591
- SHA256
  
  64940ebd8a544caa403b7b07892816255c28134eeb7eba9f3f95e72be3c49fbc
- SHA512
  
  d85d1c16b4f3c02874fbd2a4c1740a4cdbf64b7cbf6e577d6ee1bae261ac7a28c6d0a73b9ff9eed9c5d4c5b234daea5932035aee8b6aed39b93af36eff33eb4c
- SSDEEP
  
  1536:Hfg+M2Y9oH+cpTKeyaI0Z/od8bDbRvU5yYeVYXrgITAGXBB3exYEjpepikFIy:HfgyY9oH+cTKGI0Z/oooeVYXrgI0GXW4
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2