8c30b9555c2fd0adf894a2b7bab272cdee27b507dcf0c2909c4b079716095a92 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

49c9f67f8d9feb5659126fcfff84b6d9_JaffaCakes118
Size

160KB
Sample

240715-ppyzhs1dqr
MD5

49c9f67f8d9feb5659126fcfff84b6d9
SHA1

8398b9e7557403a604a522a8b9d9d2a0058b29c0
SHA256

8c30b9555c2fd0adf894a2b7bab272cdee27b507dcf0c2909c4b079716095a92
SHA512

95d32090db3238c37c9bab00b0f5425b3cc6730ba123b7d703ffeb55a0f215ae0a227d19265a0123b45a13fc308f25b753e6e384a3b2c67ed69649e75350edfc
SSDEEP

3072:7kKZpCS0uj/jn8R6BgBwJfZqH7mTNbap2VftOphUh:7kaUSXzjGBGfYbQOp4fW

Score

7^/10

Malware Config

Targets

- Target
  
  49c9f67f8d9feb5659126fcfff84b6d9_JaffaCakes118
- Size
  
  160KB
- MD5
  
  49c9f67f8d9feb5659126fcfff84b6d9
- SHA1
  
  8398b9e7557403a604a522a8b9d9d2a0058b29c0
- SHA256
  
  8c30b9555c2fd0adf894a2b7bab272cdee27b507dcf0c2909c4b079716095a92
- SHA512
  
  95d32090db3238c37c9bab00b0f5425b3cc6730ba123b7d703ffeb55a0f215ae0a227d19265a0123b45a13fc308f25b753e6e384a3b2c67ed69649e75350edfc
- SSDEEP
  
  3072:7kKZpCS0uj/jn8R6BgBwJfZqH7mTNbap2VftOphUh:7kaUSXzjGBGfYbQOp4fW
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2