6dc0f228e6144b2c69e72b7cd77be67f138a7a02c24752e893ba24c98ca8d993 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b16c404f3a6b9448709e7380a74edd4b_JaffaCakes118
Size

1.0MB
Sample

240821-akwk9svanp
MD5

b16c404f3a6b9448709e7380a74edd4b
SHA1

db1fde92339b79b5246de25b46ba96beefdc5883
SHA256

6dc0f228e6144b2c69e72b7cd77be67f138a7a02c24752e893ba24c98ca8d993
SHA512

68f4e485784dac33e5cab7d67ed9d1c48903c92ae3709d3e7694296203669b4817a10c0edfb71391b45842a4d692bfa480469540706e47083f317b61cf516def
SSDEEP

12288:iXxxiKDVkCtS/G/BMUNF+zxJByVXxC/xzzV0tuJhjcTY/kQEnEOSJ+K83YLwQwEL:ihx3+iSaM8FkByV25ekrcygnxSJ8YzD

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b16c404f3a6b9448709e7380a74edd4b_JaffaCakes118
- Size
  
  1.0MB
- MD5
  
  b16c404f3a6b9448709e7380a74edd4b
- SHA1
  
  db1fde92339b79b5246de25b46ba96beefdc5883
- SHA256
  
  6dc0f228e6144b2c69e72b7cd77be67f138a7a02c24752e893ba24c98ca8d993
- SHA512
  
  68f4e485784dac33e5cab7d67ed9d1c48903c92ae3709d3e7694296203669b4817a10c0edfb71391b45842a4d692bfa480469540706e47083f317b61cf516def
- SSDEEP
  
  12288:iXxxiKDVkCtS/G/BMUNF+zxJByVXxC/xzzV0tuJhjcTY/kQEnEOSJ+K83YLwQwEL:ihx3+iSaM8FkByV25ekrcygnxSJ8YzD
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2