0facd370321fce244b9066238d4a92a86fdf2a3292db86da470ba3fe3f527bcc | Triage

Sharing

General

Target

fd22729e2779df4fd5215946706eabc3_JaffaCakes118
Size

111KB
Sample

240928-zswzfayfre
MD5

fd22729e2779df4fd5215946706eabc3
SHA1

60a13947061414b0e5022452eba87144eebf55b3
SHA256

0facd370321fce244b9066238d4a92a86fdf2a3292db86da470ba3fe3f527bcc
SHA512

32e9ab78e4d418b17cc2b3f4a133d421e0288fdd1f5aebc16cca09544b74bd394b906539bc741b5f23ecc247a74cd1d810f5abb2a4bb298892169fc4f7b3c5e3
SSDEEP

1536:rmEGfvZWi1ThmckIHf8QXBwfq/8pqZdS6WnyBxUCsr725R4R5FNF4NSmCFIb:SvVEIkISq/8pwEyBNWFNHFIb

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fd22729e2779df4fd5215946706eabc3_JaffaCakes118
- Size
  
  111KB
- MD5
  
  fd22729e2779df4fd5215946706eabc3
- SHA1
  
  60a13947061414b0e5022452eba87144eebf55b3
- SHA256
  
  0facd370321fce244b9066238d4a92a86fdf2a3292db86da470ba3fe3f527bcc
- SHA512
  
  32e9ab78e4d418b17cc2b3f4a133d421e0288fdd1f5aebc16cca09544b74bd394b906539bc741b5f23ecc247a74cd1d810f5abb2a4bb298892169fc4f7b3c5e3
- SSDEEP
  
  1536:rmEGfvZWi1ThmckIHf8QXBwfq/8pqZdS6WnyBxUCsr725R4R5FNF4NSmCFIb:SvVEIkISq/8pwEyBNWFNHFIb
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2