1d32c6f43f551436d40b19a82bc54f121f379a171771f8d5aba8eae2768887d1 | Triage

Sharing

General

Target

eacfc30298843ceb8c667c400582ee8b_JaffaCakes118
Size

324KB
Sample

240919-htz9tawglk
MD5

eacfc30298843ceb8c667c400582ee8b
SHA1

cec7685fba45ad46ac48aa093488496e5b8b9a1b
SHA256

1d32c6f43f551436d40b19a82bc54f121f379a171771f8d5aba8eae2768887d1
SHA512

392955c6044f2f622cb88f1fb483e498d4619294265b23716095e7445f4573e97e4f9cc2f535f62029e7628d70894cc74fe87b20675a9c3b94f2dbd11e7bb3a6
SSDEEP

1536:tOJVn4JLlfLJ0UYFqeXx57B4JN5eCD8SlNDSSvHFRiCCVGCWPaeSe+eooOoaoCoj:QV4JLlfLIl7B4JN5eI4A

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  eacfc30298843ceb8c667c400582ee8b_JaffaCakes118
- Size
  
  324KB
- MD5
  
  eacfc30298843ceb8c667c400582ee8b
- SHA1
  
  cec7685fba45ad46ac48aa093488496e5b8b9a1b
- SHA256
  
  1d32c6f43f551436d40b19a82bc54f121f379a171771f8d5aba8eae2768887d1
- SHA512
  
  392955c6044f2f622cb88f1fb483e498d4619294265b23716095e7445f4573e97e4f9cc2f535f62029e7628d70894cc74fe87b20675a9c3b94f2dbd11e7bb3a6
- SSDEEP
  
  1536:tOJVn4JLlfLJ0UYFqeXx57B4JN5eCD8SlNDSSvHFRiCCVGCWPaeSe+eooOoaoCoj:QV4JLlfLIl7B4JN5eI4A
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2