522460b479dbb2b49a41233089f9bd0f6aa03ebc2a606519ccacf56522a0bc29 | Triage

Sharing

General

Target

f6d7f76cef123666266ae939a888fe1e_JaffaCakes118
Size

162KB
Sample

240925-zqxsyszhle
MD5

f6d7f76cef123666266ae939a888fe1e
SHA1

23133f425fd82e94300a196a0c52a4e0d9564203
SHA256

522460b479dbb2b49a41233089f9bd0f6aa03ebc2a606519ccacf56522a0bc29
SHA512

56548f597fb987cbf829655953bd28134db5d729da48714d815d8c62bd94b0ca89faed37a5ed97020471fcf6431dd3f931fde4d68ab5b4183fa0c3f43eab498a
SSDEEP

1536:0vn9DmOPj3/EyIR1Y+IjIVZgFNyifN/E3+gHurSwzMpE1gNYlVLNG:0l3TIR1YzNy8E3+dGna1rLNG

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  f6d7f76cef123666266ae939a888fe1e_JaffaCakes118
- Size
  
  162KB
- MD5
  
  f6d7f76cef123666266ae939a888fe1e
- SHA1
  
  23133f425fd82e94300a196a0c52a4e0d9564203
- SHA256
  
  522460b479dbb2b49a41233089f9bd0f6aa03ebc2a606519ccacf56522a0bc29
- SHA512
  
  56548f597fb987cbf829655953bd28134db5d729da48714d815d8c62bd94b0ca89faed37a5ed97020471fcf6431dd3f931fde4d68ab5b4183fa0c3f43eab498a
- SSDEEP
  
  1536:0vn9DmOPj3/EyIR1Y+IjIVZgFNyifN/E3+gHurSwzMpE1gNYlVLNG:0l3TIR1YzNy8E3+dGna1rLNG
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2