7bbaf4bca90354409d96f048eb458e21ebfd660a809d4116a04f7fa457bd3c51 | Triage

Sharing

General

Target

866c048e81e2444731dabe58cdb987ce_JaffaCakes118
Size

88KB
Sample

240810-rvda4sxepa
MD5

866c048e81e2444731dabe58cdb987ce
SHA1

02a1b51d716e121173c2e336e7d8a9a8d2c602f8
SHA256

7bbaf4bca90354409d96f048eb458e21ebfd660a809d4116a04f7fa457bd3c51
SHA512

15890066fb5cc536e6d5e5e504621df45a0b4f94848b582b08662c0fbbc8f63b7290965f820442a65106993d8b33e8393127b31ed93f37bb44abdb619140032a
SSDEEP

768:xg3+1GTlezZEatuHqLPkhEryY5USTMSuHcj19lmVWUE2q7NRbCxX5HoL3/QZZHwq:xu+1GeZmhtYhUKLPyQH2xEAAwT

Score

7^/10

defense_evasion discovery

Malware Config

Targets

- Target
  
  866c048e81e2444731dabe58cdb987ce_JaffaCakes118
- Size
  
  88KB
- MD5
  
  866c048e81e2444731dabe58cdb987ce
- SHA1
  
  02a1b51d716e121173c2e336e7d8a9a8d2c602f8
- SHA256
  
  7bbaf4bca90354409d96f048eb458e21ebfd660a809d4116a04f7fa457bd3c51
- SHA512
  
  15890066fb5cc536e6d5e5e504621df45a0b4f94848b582b08662c0fbbc8f63b7290965f820442a65106993d8b33e8393127b31ed93f37bb44abdb619140032a
- SSDEEP
  
  768:xg3+1GTlezZEatuHqLPkhEryY5USTMSuHcj19lmVWUE2q7NRbCxX5HoL3/QZZHwq:xu+1GeZmhtYhUKLPyQH2xEAAwT
Score

7^/10

defense_evasion discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Indicator Removal: File Deletion
  Adversaries may delete files left behind by the actions of their intrusion activity.
  defense_evasion
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Indicator Removal

File Deletion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

defense_evasiondiscovery

behavioral2

defense_evasiondiscovery