1e7cc1f7999bd00b0d3def4879b80f75d1c849bf1aec0567b042dad9e2c03af9 | Triage

Sharing

General

Target

632ff84ea675883dc7ae0bbc25eb60cc_JaffaCakes118
Size

1024KB
Sample

240722-pd5ypaxhlj
MD5

632ff84ea675883dc7ae0bbc25eb60cc
SHA1

0ef551395555bde0470d91019a26cc48478515ea
SHA256

1e7cc1f7999bd00b0d3def4879b80f75d1c849bf1aec0567b042dad9e2c03af9
SHA512

c40f09f513db68f4ffea91c8192ee15b0b78a840785c4035182d1adf99c4d023473e88d3510f32f497a9e2c62eec20d99571a1fce9ba2aec295520b190743de5
SSDEEP

384:8/LouqWa1ZM7R2nbEbWAd0sUmapCbYdkZMeRExECDpNNsUYeKdddddGdddddbDFe:8/UNnZMW0UdpI6eREuCDe8Dsrg8

Score

7^/10

Malware Config

Targets

- Target
  
  632ff84ea675883dc7ae0bbc25eb60cc_JaffaCakes118
- Size
  
  1024KB
- MD5
  
  632ff84ea675883dc7ae0bbc25eb60cc
- SHA1
  
  0ef551395555bde0470d91019a26cc48478515ea
- SHA256
  
  1e7cc1f7999bd00b0d3def4879b80f75d1c849bf1aec0567b042dad9e2c03af9
- SHA512
  
  c40f09f513db68f4ffea91c8192ee15b0b78a840785c4035182d1adf99c4d023473e88d3510f32f497a9e2c62eec20d99571a1fce9ba2aec295520b190743de5
- SSDEEP
  
  384:8/LouqWa1ZM7R2nbEbWAd0sUmapCbYdkZMeRExECDpNNsUYeKdddddGdddddbDFe:8/UNnZMW0UdpI6eREuCDe8Dsrg8
Score

7^/10
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2