f2c34f72e8884e8921b3aa7cc293892fb9faf2ac149a8ee0d15346fcbe597660 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

373dc73980a2325a2fcc28bb5c43321d_JaffaCakes118
Size

243KB
Sample

241011-2zjnsstcpl
MD5

373dc73980a2325a2fcc28bb5c43321d
SHA1

a049a62a8e5d018d15e56f571821952ecd9f4fa3
SHA256

f2c34f72e8884e8921b3aa7cc293892fb9faf2ac149a8ee0d15346fcbe597660
SHA512

928709230381c79bfe3bb9b0054036f2c0edc24741ac87ed3003476694de9a959207299ef25182546ffe03891e313f5ce38772e28aa14643315d6a53944b2ce5
SSDEEP

3072:TYhnikwbzyE8/psSLv+DVSzUTr3WUxbg7YgVlFBIiSHqXpNyFmj4P+eWbfHjvsE1:TYhnxrqeuVc4ElBPSIDdNH

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  373dc73980a2325a2fcc28bb5c43321d_JaffaCakes118
- Size
  
  243KB
- MD5
  
  373dc73980a2325a2fcc28bb5c43321d
- SHA1
  
  a049a62a8e5d018d15e56f571821952ecd9f4fa3
- SHA256
  
  f2c34f72e8884e8921b3aa7cc293892fb9faf2ac149a8ee0d15346fcbe597660
- SHA512
  
  928709230381c79bfe3bb9b0054036f2c0edc24741ac87ed3003476694de9a959207299ef25182546ffe03891e313f5ce38772e28aa14643315d6a53944b2ce5
- SSDEEP
  
  3072:TYhnikwbzyE8/psSLv+DVSzUTr3WUxbg7YgVlFBIiSHqXpNyFmj4P+eWbfHjvsE1:TYhnxrqeuVc4ElBPSIDdNH
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2