e1b5b1248e77880d373cbab490ed4258d85f0e058cbd2eeae5a1af6529b6e4eb | Triage

Sharing

General

Target

02e592541e9937bf99bb439d6eb1f4f9_JaffaCakes118
Size

529KB
Sample

240930-xzzmss1dlp
MD5

02e592541e9937bf99bb439d6eb1f4f9
SHA1

3b340d1c56a9489b4cafeb871afa0608ce889966
SHA256

e1b5b1248e77880d373cbab490ed4258d85f0e058cbd2eeae5a1af6529b6e4eb
SHA512

48afb5cb88054c10e51cecc3503dcae54fafd84582dea04f3242576f06f1481e8277a83ca490e870bdca0ea623f4632aae634ce69de8b7ec85250de048289eb6
SSDEEP

12288:+6PiijUm/R+3xGW+VvHgkXsXmKvE/idVu3adFp:pKQExGX4IemKM/idcadL

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  02e592541e9937bf99bb439d6eb1f4f9_JaffaCakes118
- Size
  
  529KB
- MD5
  
  02e592541e9937bf99bb439d6eb1f4f9
- SHA1
  
  3b340d1c56a9489b4cafeb871afa0608ce889966
- SHA256
  
  e1b5b1248e77880d373cbab490ed4258d85f0e058cbd2eeae5a1af6529b6e4eb
- SHA512
  
  48afb5cb88054c10e51cecc3503dcae54fafd84582dea04f3242576f06f1481e8277a83ca490e870bdca0ea623f4632aae634ce69de8b7ec85250de048289eb6
- SSDEEP
  
  12288:+6PiijUm/R+3xGW+VvHgkXsXmKvE/idVu3adFp:pKQExGX4IemKM/idcadL
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2