9dc6949643aaed62f4b37e2d5828b13ce9324880392b198124ec7683dffee13a | Triage

Sharing

Copy URL Twitter E-mail

General

Target

279557500722a4c6b44a6310628cb75d_JaffaCakes118
Size

112KB
Sample

241009-akm9wsscpp
MD5

279557500722a4c6b44a6310628cb75d
SHA1

3bd37e9ddf2680e3ee705e0bb7f87fdf52433131
SHA256

9dc6949643aaed62f4b37e2d5828b13ce9324880392b198124ec7683dffee13a
SHA512

8ea5a3d06037d674c373ea165d135e90fab0d14b73f19146c012bdd2a275ff3ff4ef03dea7743f0293650cab38df927983241cbd9038597e125dd4d969967ea5
SSDEEP

3072:fyN4eb8nd+YaHKk0K/nPE173NJkTB+nuvgKMSfFIb:KN4eb8nd+YgNv817NJIB+uvTM5

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  279557500722a4c6b44a6310628cb75d_JaffaCakes118
- Size
  
  112KB
- MD5
  
  279557500722a4c6b44a6310628cb75d
- SHA1
  
  3bd37e9ddf2680e3ee705e0bb7f87fdf52433131
- SHA256
  
  9dc6949643aaed62f4b37e2d5828b13ce9324880392b198124ec7683dffee13a
- SHA512
  
  8ea5a3d06037d674c373ea165d135e90fab0d14b73f19146c012bdd2a275ff3ff4ef03dea7743f0293650cab38df927983241cbd9038597e125dd4d969967ea5
- SSDEEP
  
  3072:fyN4eb8nd+YaHKk0K/nPE173NJkTB+nuvgKMSfFIb:KN4eb8nd+YgNv817NJIB+uvTM5
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2