012d2e1d126cd6d286170042142cb55669cb4d1109c1f2c00bc9902822a105ef | Triage

Sharing

General

Target

ee87b1f331162ae2c1a81d063431e18c_JaffaCakes118
Size

323KB
Sample

240920-164rwa1fkq
MD5

ee87b1f331162ae2c1a81d063431e18c
SHA1

d635e6ec5992d046518807f26048495edb8796c5
SHA256

012d2e1d126cd6d286170042142cb55669cb4d1109c1f2c00bc9902822a105ef
SHA512

657f7b2ff99a142cb9649dd2ca55783b720868c5e8f79ff3413cf4b44e4bc52c81fc0bc40e275e595157b6674d3bcae62affaddecb7560059a277baf0c604383
SSDEEP

1536:FkoVgaYJLFfLJEUI1qeXxyGA3N5eyD8SlNDSzvHFRiCCVGCWPGeSe+eooOoaoCo7:/tYJLFfLoWGA3N5ecY5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  ee87b1f331162ae2c1a81d063431e18c_JaffaCakes118
- Size
  
  323KB
- MD5
  
  ee87b1f331162ae2c1a81d063431e18c
- SHA1
  
  d635e6ec5992d046518807f26048495edb8796c5
- SHA256
  
  012d2e1d126cd6d286170042142cb55669cb4d1109c1f2c00bc9902822a105ef
- SHA512
  
  657f7b2ff99a142cb9649dd2ca55783b720868c5e8f79ff3413cf4b44e4bc52c81fc0bc40e275e595157b6674d3bcae62affaddecb7560059a277baf0c604383
- SSDEEP
  
  1536:FkoVgaYJLFfLJEUI1qeXxyGA3N5eyD8SlNDSzvHFRiCCVGCWPGeSe+eooOoaoCo7:/tYJLFfLoWGA3N5ecY5
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Executes dropped EXE
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2