461483fafdb9c48dee3b902d6f36b239fce68026abe11a01eca6314e9584e334 | Triage

Sharing

General

Target

2b68837db9de8dc4868b847fe774be21_JaffaCakes118
Size

127KB
Sample

240708-hv6g8axgjr
MD5

2b68837db9de8dc4868b847fe774be21
SHA1

5b267c68d86cb57646a9c765add756cb65ca643d
SHA256

461483fafdb9c48dee3b902d6f36b239fce68026abe11a01eca6314e9584e334
SHA512

733899d7f0278b9611daa3b41f2b4ebaffcb7d7a185e5b28ff4c7e9ae345a36957feb57323a8b3927166dec997febc46c97adb19f7496b9296312ab0645549b2
SSDEEP

3072:tWIVzl1GSJLLpgmGj8g5ZQXMmwI+QXMmwI2m:gIVzl3LumGGMazMa2m

Score

7^/10

Malware Config

Targets

- Target
  
  2b68837db9de8dc4868b847fe774be21_JaffaCakes118
- Size
  
  127KB
- MD5
  
  2b68837db9de8dc4868b847fe774be21
- SHA1
  
  5b267c68d86cb57646a9c765add756cb65ca643d
- SHA256
  
  461483fafdb9c48dee3b902d6f36b239fce68026abe11a01eca6314e9584e334
- SHA512
  
  733899d7f0278b9611daa3b41f2b4ebaffcb7d7a185e5b28ff4c7e9ae345a36957feb57323a8b3927166dec997febc46c97adb19f7496b9296312ab0645549b2
- SSDEEP
  
  3072:tWIVzl1GSJLLpgmGj8g5ZQXMmwI+QXMmwI2m:gIVzl3LumGGMazMa2m
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2