7cf9f425293e94f4cf2e03c0100a54a27aee84dfef5224040a90e36af75615e0 | Triage

Sharing

General

Target

13c8a938608e609909b0777427cfd409_JaffaCakes118
Size

113KB
Sample

241004-r4aatazcql
MD5

13c8a938608e609909b0777427cfd409
SHA1

85840b402b1bf9acfe5280539466a87d510956f6
SHA256

7cf9f425293e94f4cf2e03c0100a54a27aee84dfef5224040a90e36af75615e0
SHA512

bfa0ef629185eded5fd2ca12eaeaca79a3cbe38ba8c1e081ed395809ed1f50e3df72c137b271d91f8535d8f7415b17fc6163127491b01d9b7a7b687d4a6f0449
SSDEEP

3072:DhTDRkQ6E50IsXz0b+45p3fwoYGX2Jt1b3Mk5LL604FIb:DhTDRkQ6E50fD0b+4vvyGX2JHb8k5LLD

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  13c8a938608e609909b0777427cfd409_JaffaCakes118
- Size
  
  113KB
- MD5
  
  13c8a938608e609909b0777427cfd409
- SHA1
  
  85840b402b1bf9acfe5280539466a87d510956f6
- SHA256
  
  7cf9f425293e94f4cf2e03c0100a54a27aee84dfef5224040a90e36af75615e0
- SHA512
  
  bfa0ef629185eded5fd2ca12eaeaca79a3cbe38ba8c1e081ed395809ed1f50e3df72c137b271d91f8535d8f7415b17fc6163127491b01d9b7a7b687d4a6f0449
- SSDEEP
  
  3072:DhTDRkQ6E50IsXz0b+45p3fwoYGX2Jt1b3Mk5LL604FIb:DhTDRkQ6E50fD0b+4vvyGX2JHb8k5LLD
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2