2d87668645fde5524ee6a83e52a38e41c467056e3c4fb9454d8dffacf5d14137 | Triage

Sharing

General

Target

a4b4e5fc8b50caa1ccdd3287caed5395_JaffaCakes118
Size

67KB
Sample

240818-awglgsyckn
MD5

a4b4e5fc8b50caa1ccdd3287caed5395
SHA1

99684b32dec900c29556cef10d733234b7b421ab
SHA256

2d87668645fde5524ee6a83e52a38e41c467056e3c4fb9454d8dffacf5d14137
SHA512

e48c6f219a6bc2b52110e87371f83a8d63a11182032235bc8922c25f63e1a3dde5e26c7d1ae12aa3e00a47af7a5d4ce3bf12721253f16d3457bcb6b938132e19
SSDEEP

1536:4qVlFrJ1OObCcx5vDsc63QuPRelAOYqa0:46PrJXbNjh63eAT0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  a4b4e5fc8b50caa1ccdd3287caed5395_JaffaCakes118
- Size
  
  67KB
- MD5
  
  a4b4e5fc8b50caa1ccdd3287caed5395
- SHA1
  
  99684b32dec900c29556cef10d733234b7b421ab
- SHA256
  
  2d87668645fde5524ee6a83e52a38e41c467056e3c4fb9454d8dffacf5d14137
- SHA512
  
  e48c6f219a6bc2b52110e87371f83a8d63a11182032235bc8922c25f63e1a3dde5e26c7d1ae12aa3e00a47af7a5d4ce3bf12721253f16d3457bcb6b938132e19
- SSDEEP
  
  1536:4qVlFrJ1OObCcx5vDsc63QuPRelAOYqa0:46PrJXbNjh63eAT0
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2