9adabf25109832f6fe2ab8dec515ee758a384a25f1f0f53a5f59799bc0ea488e | Triage

Sharing

Copy URL Twitter E-mail

General

Target

f00186e708e208aa481137c1c5a7de1c_JaffaCakes118
Size

113KB
Sample

240921-rx47lsxbkf
MD5

f00186e708e208aa481137c1c5a7de1c
SHA1

fc7c82ff341923ac396ce86b6554da7c81abd41f
SHA256

9adabf25109832f6fe2ab8dec515ee758a384a25f1f0f53a5f59799bc0ea488e
SHA512

b25e1e455701f8e60d41982c52debff6b869014608111095a7018d2b3403f6eb9a01767ea0686c43d07bfbd69fe182293ccf5a9fdb3e32abccf1b610aaa97cfb
SSDEEP

3072:2hTDRkQ6E50IsXz0b+45p3fwoYGX2Jt1b3Mk5LL604FIb:2hTDRkQ6E50fD0b+4vvyGX2JHb8k5LLD

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f00186e708e208aa481137c1c5a7de1c_JaffaCakes118
- Size
  
  113KB
- MD5
  
  f00186e708e208aa481137c1c5a7de1c
- SHA1
  
  fc7c82ff341923ac396ce86b6554da7c81abd41f
- SHA256
  
  9adabf25109832f6fe2ab8dec515ee758a384a25f1f0f53a5f59799bc0ea488e
- SHA512
  
  b25e1e455701f8e60d41982c52debff6b869014608111095a7018d2b3403f6eb9a01767ea0686c43d07bfbd69fe182293ccf5a9fdb3e32abccf1b610aaa97cfb
- SSDEEP
  
  3072:2hTDRkQ6E50IsXz0b+45p3fwoYGX2Jt1b3Mk5LL604FIb:2hTDRkQ6E50fD0b+4vvyGX2JHb8k5LLD
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2