900ce9341073ea4f0691cc2462fc8323e1fe8b174b4e3df24080bd34c9484a18 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

a3c62bc30d96e88e796b9e10f5c3ab7f_JaffaCakes118
Size

20KB
Sample

240817-xvt7hsvclj
MD5

a3c62bc30d96e88e796b9e10f5c3ab7f
SHA1

83494d038432f441393212ad58f1b74d1529be3f
SHA256

900ce9341073ea4f0691cc2462fc8323e1fe8b174b4e3df24080bd34c9484a18
SHA512

5602cb91cdf41e06b41937d62fe40f7861c1361e5594d0389610663a061511d8b3c06d79c7337f1daeafaed5abeac3d7fc2b8c2abdad8ea7236a8b608719064a
SSDEEP

384:x/7h/djR8t3Ik8lFKWjcaz/JaWKthOl0fG34o:D1R8tL8cazYDtMl0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a3c62bc30d96e88e796b9e10f5c3ab7f_JaffaCakes118
- Size
  
  20KB
- MD5
  
  a3c62bc30d96e88e796b9e10f5c3ab7f
- SHA1
  
  83494d038432f441393212ad58f1b74d1529be3f
- SHA256
  
  900ce9341073ea4f0691cc2462fc8323e1fe8b174b4e3df24080bd34c9484a18
- SHA512
  
  5602cb91cdf41e06b41937d62fe40f7861c1361e5594d0389610663a061511d8b3c06d79c7337f1daeafaed5abeac3d7fc2b8c2abdad8ea7236a8b608719064a
- SSDEEP
  
  384:x/7h/djR8t3Ik8lFKWjcaz/JaWKthOl0fG34o:D1R8tL8cazYDtMl0
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2