f3c4c2827e9cc81c27c9b261533cdc826a3b9724344ddc92394e073c66338170 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

05f46af58c8234972d509542f3aacf0c_JaffaCakes118
Size

21KB
Sample

240620-pknmzs1err
MD5

05f46af58c8234972d509542f3aacf0c
SHA1

062fa4b59d00a55727a12a8d511440af6a18c898
SHA256

f3c4c2827e9cc81c27c9b261533cdc826a3b9724344ddc92394e073c66338170
SHA512

33c7549310f70e7ea82656695350c50838931e584fdb3b0b1cd907522cc5d1fd235a91fc03151388c0ac3dce69fb177f66470b48a64330a87700487b7b5b4561
SSDEEP

384:GGlv4kgEaorkmjSVQK/KUCcRCe5VDynWK8eOlnEuTTtWOeo:c2aor5jS3KUCcge5VD8D8blnEe

Score

7^/10

Malware Config

Targets

- Target
  
  05f46af58c8234972d509542f3aacf0c_JaffaCakes118
- Size
  
  21KB
- MD5
  
  05f46af58c8234972d509542f3aacf0c
- SHA1
  
  062fa4b59d00a55727a12a8d511440af6a18c898
- SHA256
  
  f3c4c2827e9cc81c27c9b261533cdc826a3b9724344ddc92394e073c66338170
- SHA512
  
  33c7549310f70e7ea82656695350c50838931e584fdb3b0b1cd907522cc5d1fd235a91fc03151388c0ac3dce69fb177f66470b48a64330a87700487b7b5b4561
- SSDEEP
  
  384:GGlv4kgEaorkmjSVQK/KUCcRCe5VDynWK8eOlnEuTTtWOeo:c2aor5jS3KUCcge5VD8D8blnEe
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2