General

  • Target

    7f22aa396202bf7edac8bee0ffbad4a8_JaffaCakes118

  • Size

    11KB

  • Sample

    241030-n8cd7atanr

  • MD5

    7f22aa396202bf7edac8bee0ffbad4a8

  • SHA1

    0ebb7d1c1393c4effbd6cbf820fd81d5b073c068

  • SHA256

    765d8ac643f17b607ad8946fe8fa3cded185efd57f21131cadf5cd73cf719bf1

  • SHA512

    ba35968fc58c7551f5d9086d2d543106fc6de3b163330b215fc57467673028eb970b3cdfead87c11f7ffdcbf1927bbe9b2dd7c61e08c8038a7d16e4c76b61ef0

  • SSDEEP

    192:1sbwheU2Uf7WA16Nchmax9+SBqVMGMiNqL2df58kcof0LCa7H:1sbwhdf7WA1ygmawxMibH0ma7H

Malware Config

Targets

    • Target

      7f22aa396202bf7edac8bee0ffbad4a8_JaffaCakes118

    • Size

      11KB

    • MD5

      7f22aa396202bf7edac8bee0ffbad4a8

    • SHA1

      0ebb7d1c1393c4effbd6cbf820fd81d5b073c068

    • SHA256

      765d8ac643f17b607ad8946fe8fa3cded185efd57f21131cadf5cd73cf719bf1

    • SHA512

      ba35968fc58c7551f5d9086d2d543106fc6de3b163330b215fc57467673028eb970b3cdfead87c11f7ffdcbf1927bbe9b2dd7c61e08c8038a7d16e4c76b61ef0

    • SSDEEP

      192:1sbwheU2Uf7WA16Nchmax9+SBqVMGMiNqL2df58kcof0LCa7H:1sbwhdf7WA1ygmawxMibH0ma7H

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Deletes itself

    • Indicator Removal: File Deletion

      Adversaries may delete files left behind by the actions of their intrusion activity.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks