58dcef07f7b56c31309ff2e828ddd0fdc90e7ec3a82e4b2a20e4205bae8637d5 | Triage

Sharing

General

Target

2fb972de7b312d54179a9c41837519dd_JaffaCakes118
Size

380KB
Sample

240709-kvcw1swajj
MD5

2fb972de7b312d54179a9c41837519dd
SHA1

92927b9d4161872044d7b5741e3742402ceba357
SHA256

58dcef07f7b56c31309ff2e828ddd0fdc90e7ec3a82e4b2a20e4205bae8637d5
SHA512

104bc5019484778137fc7e6f82836e223a6016cf6d670ca66dc3e5006df4dd1996baa2a29d4b4ead447b8534f1c37566d2c0b0c13a47c3c8280053b08289b73e
SSDEEP

6144:DyP/HiDMuQeNzrPoB5vmMnv4sxtPJGz04Dv0wppCzkF/wVNxGcb:OiDbRNzjo7bnv4cJGz0K1QkNaNsK

Score

7^/10

Malware Config

Targets

- Target
  
  2fb972de7b312d54179a9c41837519dd_JaffaCakes118
- Size
  
  380KB
- MD5
  
  2fb972de7b312d54179a9c41837519dd
- SHA1
  
  92927b9d4161872044d7b5741e3742402ceba357
- SHA256
  
  58dcef07f7b56c31309ff2e828ddd0fdc90e7ec3a82e4b2a20e4205bae8637d5
- SHA512
  
  104bc5019484778137fc7e6f82836e223a6016cf6d670ca66dc3e5006df4dd1996baa2a29d4b4ead447b8534f1c37566d2c0b0c13a47c3c8280053b08289b73e
- SSDEEP
  
  6144:DyP/HiDMuQeNzrPoB5vmMnv4sxtPJGz04Dv0wppCzkF/wVNxGcb:OiDbRNzjo7bnv4cJGz0K1QkNaNsK
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2