33217fe0d97a3de25d2fb97352e31aba85b92cf505d7309c6b21971be47bef51 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

d0433031a442baf31ae678562772f176_JaffaCakes118
Size

213KB
Sample

240906-xr6fdatanm
MD5

d0433031a442baf31ae678562772f176
SHA1

01d28c8351e5c85be55c2902290c2ad9d3bec778
SHA256

33217fe0d97a3de25d2fb97352e31aba85b92cf505d7309c6b21971be47bef51
SHA512

9824bd9d6bc360418608346a7a3158cc1ef9243c62e0932aa2529d9d3811a448c2e44a08281c05aeb5e11f446610decad6e7d9c233d6d8dfc1e3975c5b8e02ed
SSDEEP

3072:WGf6viAIxc9LNyRulW1fyNi2i9snSSK0qt94kJ+7fno7DFkMO3jF9G:WGuCxciuW1Ksvp0q907Q7DF43jF

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  d0433031a442baf31ae678562772f176_JaffaCakes118
- Size
  
  213KB
- MD5
  
  d0433031a442baf31ae678562772f176
- SHA1
  
  01d28c8351e5c85be55c2902290c2ad9d3bec778
- SHA256
  
  33217fe0d97a3de25d2fb97352e31aba85b92cf505d7309c6b21971be47bef51
- SHA512
  
  9824bd9d6bc360418608346a7a3158cc1ef9243c62e0932aa2529d9d3811a448c2e44a08281c05aeb5e11f446610decad6e7d9c233d6d8dfc1e3975c5b8e02ed
- SSDEEP
  
  3072:WGf6viAIxc9LNyRulW1fyNi2i9snSSK0qt94kJ+7fno7DFkMO3jF9G:WGuCxciuW1Ksvp0q907Q7DF43jF
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2