52e533bbe35aaaedd8b2e9c7cffb6282914be8a413ff63158d33f37a3a7e5a3c | Triage

Sharing

General

Target

70bb05e78c599bb8055390ad2c954524_JaffaCakes118
Size

75KB
Sample

240725-w2l9tawgjp
MD5

70bb05e78c599bb8055390ad2c954524
SHA1

a29ac20ff827407fa5e105d1e5697232ba448d4b
SHA256

52e533bbe35aaaedd8b2e9c7cffb6282914be8a413ff63158d33f37a3a7e5a3c
SHA512

a9a1b8ffb680c28ff73c7d881409e2e94abe1d1c4eef9b61ff9059967b1008e37fba9c6c1fe633aa3e396776cd19fa01e6ee1ddae9e9b2391123afc159eee80a
SSDEEP

1536:vYSOeZK8n1xu3aGujkngFFBAUxObQpxqDV:vYSOCKsAq5jBPK8SLV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  70bb05e78c599bb8055390ad2c954524_JaffaCakes118
- Size
  
  75KB
- MD5
  
  70bb05e78c599bb8055390ad2c954524
- SHA1
  
  a29ac20ff827407fa5e105d1e5697232ba448d4b
- SHA256
  
  52e533bbe35aaaedd8b2e9c7cffb6282914be8a413ff63158d33f37a3a7e5a3c
- SHA512
  
  a9a1b8ffb680c28ff73c7d881409e2e94abe1d1c4eef9b61ff9059967b1008e37fba9c6c1fe633aa3e396776cd19fa01e6ee1ddae9e9b2391123afc159eee80a
- SSDEEP
  
  1536:vYSOeZK8n1xu3aGujkngFFBAUxObQpxqDV:vYSOCKsAq5jBPK8SLV
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2