23b87e12d182409c529cd32d4e9268074e48c9fcf5f0e3087645005941d8bb95 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

644e94311168db3a9bc85c9f226ab70b_JaffaCakes118
Size

54KB
Sample

240521-w39rhaeb36
MD5

644e94311168db3a9bc85c9f226ab70b
SHA1

aa760c85ce0093933a7f9b22b10c3f4fd1286ad3
SHA256

23b87e12d182409c529cd32d4e9268074e48c9fcf5f0e3087645005941d8bb95
SHA512

0e24940f0d8b490e3030845d08bd92ed9c760f63e1f63b88f304c69319e82672921dec00a8c401704dea1fb7189ced2436c6e2bd344951b482d5e5b112784fc7
SSDEEP

1536:wIy1kT4G/WPE0VolafKDZqDjSoVseVmu1kC:wIgGOPEVlafK9qozu1kC

Score

7^/10

Malware Config

Targets

- Target
  
  644e94311168db3a9bc85c9f226ab70b_JaffaCakes118
- Size
  
  54KB
- MD5
  
  644e94311168db3a9bc85c9f226ab70b
- SHA1
  
  aa760c85ce0093933a7f9b22b10c3f4fd1286ad3
- SHA256
  
  23b87e12d182409c529cd32d4e9268074e48c9fcf5f0e3087645005941d8bb95
- SHA512
  
  0e24940f0d8b490e3030845d08bd92ed9c760f63e1f63b88f304c69319e82672921dec00a8c401704dea1fb7189ced2436c6e2bd344951b482d5e5b112784fc7
- SSDEEP
  
  1536:wIy1kT4G/WPE0VolafKDZqDjSoVseVmu1kC:wIgGOPEVlafK9qozu1kC
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2