503d33c6fb325e47348dfa1fa6f1ef00cec704b5e3ae12d724703baef5c6b0a0 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fe25571c30e09cc1b47f1363a75f4e22_JaffaCakes118
Size

42KB
Sample

240421-b72lgagb9t
MD5

fe25571c30e09cc1b47f1363a75f4e22
SHA1

4e113dba95a8b27154404829877b97f8ccb06f64
SHA256

503d33c6fb325e47348dfa1fa6f1ef00cec704b5e3ae12d724703baef5c6b0a0
SHA512

386a457076d40f435566c58f0e5119eb319b0549493fe5d379ef3fc425e7874d59cecb74bfc7963f2ed3c86a90a41bc90e4f8b5553eced2eed714bd582b9a1f2
SSDEEP

768:tEH6jUntCaXwuD9BBJvf3IWa4zdcRf0ujtcjyxbZHArItNkAaQoq1/VJ:tEH6jUntCaXwNwK/cyxVg8t6pPGz

Score

7^/10

Malware Config

Targets

- Target
  
  fe25571c30e09cc1b47f1363a75f4e22_JaffaCakes118
- Size
  
  42KB
- MD5
  
  fe25571c30e09cc1b47f1363a75f4e22
- SHA1
  
  4e113dba95a8b27154404829877b97f8ccb06f64
- SHA256
  
  503d33c6fb325e47348dfa1fa6f1ef00cec704b5e3ae12d724703baef5c6b0a0
- SHA512
  
  386a457076d40f435566c58f0e5119eb319b0549493fe5d379ef3fc425e7874d59cecb74bfc7963f2ed3c86a90a41bc90e4f8b5553eced2eed714bd582b9a1f2
- SSDEEP
  
  768:tEH6jUntCaXwuD9BBJvf3IWa4zdcRf0ujtcjyxbZHArItNkAaQoq1/VJ:tEH6jUntCaXwNwK/cyxVg8t6pPGz
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2