1ed59d404501b857d7d49c02c38978af9f6b1ee1295d78600e556e0bd4e6b419 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b3aaf2c7df77baee7105f42bec8487a7_JaffaCakes118
Size

8KB
Sample

240821-qwmqhavbmr
MD5

b3aaf2c7df77baee7105f42bec8487a7
SHA1

3f820af1ff3e7282cb0c7f8b907d002d1988c0cf
SHA256

1ed59d404501b857d7d49c02c38978af9f6b1ee1295d78600e556e0bd4e6b419
SHA512

9980ecd8b84cd2081128343c7911173cd47fdb09eecea52540af195e9c175d3613071313120a2259b10d35351aac1f6e9135daa37467823bc3ca28e6727a3214
SSDEEP

96:CXIoq6gmDe35aC/JNVp1LEaR7uMNUoynOKaSbetYmEgV:CsjGe35aC/JNFRKMNUoynBtbetYmEgV

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  b3aaf2c7df77baee7105f42bec8487a7_JaffaCakes118
- Size
  
  8KB
- MD5
  
  b3aaf2c7df77baee7105f42bec8487a7
- SHA1
  
  3f820af1ff3e7282cb0c7f8b907d002d1988c0cf
- SHA256
  
  1ed59d404501b857d7d49c02c38978af9f6b1ee1295d78600e556e0bd4e6b419
- SHA512
  
  9980ecd8b84cd2081128343c7911173cd47fdb09eecea52540af195e9c175d3613071313120a2259b10d35351aac1f6e9135daa37467823bc3ca28e6727a3214
- SSDEEP
  
  96:CXIoq6gmDe35aC/JNVp1LEaR7uMNUoynOKaSbetYmEgV:CsjGe35aC/JNFRKMNUoynBtbetYmEgV
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2