0a3225201a30b590dea595e77ed1c6ba1db9208bd29410f603fb593161890a40 | Triage

Sharing

General

Target

ddb9b8b04c0bd706eb23a6544820a112_JaffaCakes118
Size

111KB
Sample

240913-fn2vcawdkf
MD5

ddb9b8b04c0bd706eb23a6544820a112
SHA1

35a622239427502feb55d76104ccdd8cee9aa6fe
SHA256

0a3225201a30b590dea595e77ed1c6ba1db9208bd29410f603fb593161890a40
SHA512

95e0b866900930fdfc309b7f2b0f7d99e7cff9027caef2c39390cb22e2e92e778f92879aea216ad38887342366316d1e95d8689eba80412dcae919950e9d60f7
SSDEEP

3072:mvz05zKu6jOKuNKEuWKDhm5mlXwWRfemB3GikaVrrQ1IPnHFIb:Jyhm5m9RoiXVr01IP0

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ddb9b8b04c0bd706eb23a6544820a112_JaffaCakes118
- Size
  
  111KB
- MD5
  
  ddb9b8b04c0bd706eb23a6544820a112
- SHA1
  
  35a622239427502feb55d76104ccdd8cee9aa6fe
- SHA256
  
  0a3225201a30b590dea595e77ed1c6ba1db9208bd29410f603fb593161890a40
- SHA512
  
  95e0b866900930fdfc309b7f2b0f7d99e7cff9027caef2c39390cb22e2e92e778f92879aea216ad38887342366316d1e95d8689eba80412dcae919950e9d60f7
- SSDEEP
  
  3072:mvz05zKu6jOKuNKEuWKDhm5mlXwWRfemB3GikaVrrQ1IPnHFIb:Jyhm5m9RoiXVr01IP0
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2