phorphiex | d3cae8c46ffb9be79aeb3db8890dd844f03f795b23e0865c896052806bb3b925

General

Target

b78cc453ef6735d9fc1d91658309b3c9_JaffaCakes118
Size

14KB
Sample

241202-jh96bawkby
MD5

b78cc453ef6735d9fc1d91658309b3c9
SHA1

1c9a19aea4f21b5dc77965717f9813a8b265ff7d
SHA256

d3cae8c46ffb9be79aeb3db8890dd844f03f795b23e0865c896052806bb3b925
SHA512

2adc091fe870a67ad93dd7fa12842484bcca73188df45ccdcfe46c4d9037d061fb41a5a239dca5e4a5e11a984f7336332efb6bd0568d9669bf7a181be5158078
SSDEEP

384:RKL1qxnGijrYYVLJZKxo9kxouWxye2uldETQUvpNmSa0VQ:RKLWGu8QFZKsmopxyefldoQUefqQ

Score

10^/10

Malware Config

Targets

- Target
  
  b78cc453ef6735d9fc1d91658309b3c9_JaffaCakes118
- Size
  
  14KB
- MD5
  
  b78cc453ef6735d9fc1d91658309b3c9
- SHA1
  
  1c9a19aea4f21b5dc77965717f9813a8b265ff7d
- SHA256
  
  d3cae8c46ffb9be79aeb3db8890dd844f03f795b23e0865c896052806bb3b925
- SHA512
  
  2adc091fe870a67ad93dd7fa12842484bcca73188df45ccdcfe46c4d9037d061fb41a5a239dca5e4a5e11a984f7336332efb6bd0568d9669bf7a181be5158078
- SSDEEP
  
  384:RKL1qxnGijrYYVLJZKxo9kxouWxye2uldETQUvpNmSa0VQ:RKLWGu8QFZKsmopxyefldoQUefqQ
Score

10^/10

phorphiex discovery loader trojan worm
- Phorphiex family
  phorphiex
- Phorphiex, Phorpiex
  Phorphiex or Phorpiex Malware family which infects systems to distribute other malicious payloads such as ransomware, stealers and cryptominers.
  worm trojan loader phorphiex
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Deletes itself
- Loads dropped DLL
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

1

T1012

System Information Discovery

2

T1082

System Location Discovery

1

T1614

System Language Discovery

1

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

Sharing

General

Malware Config

Targets

Phorphiex family

Phorphiex, Phorpiex

Checks computer location settings

Deletes itself

Loads dropped DLL

Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks

static1

behavioral1

behavioral2