General

  • Target

    fe5bdcd71e3663a37f697b460b94dd9c_JaffaCakes118

  • Size

    4KB

  • Sample

    240929-mst4matgqd

  • MD5

    fe5bdcd71e3663a37f697b460b94dd9c

  • SHA1

    c84335c1f76543b93d6e5784c68c77502b540fd0

  • SHA256

    151597e1577a2ddce1166ae7fb25983410f9e92532b40a2bfe66e24ff707b3a9

  • SHA512

    c311cb29b2569890cd98cce282f4cd5269b3033b5b6268082031024a3b49e28ad242aa964f5efda82a0aae089abfe6d35fef5f934d51a854ea04de7d4bc6780f

  • SSDEEP

    96:OdE/FMIXMyDM9MtFGK4LPsS9kX36H6Gw6Mvf764+lqw5Rv6QhkOYtYvyWiMWW:Om/pDlEKoCX3WOhf76kwz7hkOfvPWW

Score
8/10

Malware Config

Targets

    • Target

      fe5bdcd71e3663a37f697b460b94dd9c_JaffaCakes118

    • Size

      4KB

    • MD5

      fe5bdcd71e3663a37f697b460b94dd9c

    • SHA1

      c84335c1f76543b93d6e5784c68c77502b540fd0

    • SHA256

      151597e1577a2ddce1166ae7fb25983410f9e92532b40a2bfe66e24ff707b3a9

    • SHA512

      c311cb29b2569890cd98cce282f4cd5269b3033b5b6268082031024a3b49e28ad242aa964f5efda82a0aae089abfe6d35fef5f934d51a854ea04de7d4bc6780f

    • SSDEEP

      96:OdE/FMIXMyDM9MtFGK4LPsS9kX36H6Gw6Mvf764+lqw5Rv6QhkOYtYvyWiMWW:Om/pDlEKoCX3WOhf76kwz7hkOfvPWW

    Score
    8/10
    • Blocklisted process makes network request

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

MITRE ATT&CK Enterprise v15

Tasks