ebd9142371667321600a95ae200a8db1dfff6f0ebe865abd911a41fc1d89b299 | Triage

Sharing

General

Target

0ed81b3133a57b1edf7c90cf9447208d_JaffaCakes118
Size

113KB
Sample

241003-kr1hxaybja
MD5

0ed81b3133a57b1edf7c90cf9447208d
SHA1

7cbac4dd56666e506784bf877a8de53ea6bca98c
SHA256

ebd9142371667321600a95ae200a8db1dfff6f0ebe865abd911a41fc1d89b299
SHA512

032002d50ce22568390615c55bc0630a20c1a561ee0cbef3706eee7783f237e3d7ecc19ede02456160d908dc1d281450499dee3377df1c9a358d47f896b3f148
SSDEEP

3072:demcyqFcEJrRL5JbfHmTy6ol2M5bh85VN+umgmFI1:di1Fz7mMkc18PNIgL

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  0ed81b3133a57b1edf7c90cf9447208d_JaffaCakes118
- Size
  
  113KB
- MD5
  
  0ed81b3133a57b1edf7c90cf9447208d
- SHA1
  
  7cbac4dd56666e506784bf877a8de53ea6bca98c
- SHA256
  
  ebd9142371667321600a95ae200a8db1dfff6f0ebe865abd911a41fc1d89b299
- SHA512
  
  032002d50ce22568390615c55bc0630a20c1a561ee0cbef3706eee7783f237e3d7ecc19ede02456160d908dc1d281450499dee3377df1c9a358d47f896b3f148
- SSDEEP
  
  3072:demcyqFcEJrRL5JbfHmTy6ol2M5bh85VN+umgmFI1:di1Fz7mMkc18PNIgL
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2