d23c0881090931bce141ebe9a469e9688b5111bbc8700b28febacba45b2aeb28 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

fdd8b6f7aeb0bc74b71e24ee52903e14_JaffaCakes118
Size

224KB
Sample

240929-fn5k8s1bpp
MD5

fdd8b6f7aeb0bc74b71e24ee52903e14
SHA1

cd8953e6b8337ef2a08b29a6fb62fd6dd61e2af4
SHA256

d23c0881090931bce141ebe9a469e9688b5111bbc8700b28febacba45b2aeb28
SHA512

b03db2f9476be3b9c869b9b538e90c3daf25e3d6a7e0b2d4afe2851a0505acf255e2da942d08a0c7ea6472ee21d496e7c9e30c8478dddf5a9a18b492357084db
SSDEEP

3072:JFKGRvAVOcLUDHNPRXTv86texGTwkhzgYR72l2pK6eaWb35DFU9IGV7r:KGRa+vTTYx9F2II

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  fdd8b6f7aeb0bc74b71e24ee52903e14_JaffaCakes118
- Size
  
  224KB
- MD5
  
  fdd8b6f7aeb0bc74b71e24ee52903e14
- SHA1
  
  cd8953e6b8337ef2a08b29a6fb62fd6dd61e2af4
- SHA256
  
  d23c0881090931bce141ebe9a469e9688b5111bbc8700b28febacba45b2aeb28
- SHA512
  
  b03db2f9476be3b9c869b9b538e90c3daf25e3d6a7e0b2d4afe2851a0505acf255e2da942d08a0c7ea6472ee21d496e7c9e30c8478dddf5a9a18b492357084db
- SSDEEP
  
  3072:JFKGRvAVOcLUDHNPRXTv86texGTwkhzgYR72l2pK6eaWb35DFU9IGV7r:KGRa+vTTYx9F2II
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2