adfc2b34fa603d40ec7b692c2bba35449ec1a7af955ea79a8460b8e543ef4388 | Triage

Sharing

General

Target

JaffaCakes118_f9d2634a8a19bb3ad99f339577eff0ee
Size

15KB
Sample

250111-hgtw9syrbt
MD5

f9d2634a8a19bb3ad99f339577eff0ee
SHA1

e1015e531dbedee6c3a136abc446bf71bf0def9a
SHA256

adfc2b34fa603d40ec7b692c2bba35449ec1a7af955ea79a8460b8e543ef4388
SHA512

e2177744c13e17ba2f31c5b79a386711f8425843d27d69354fcc8c0e54017f18a6e4017d67fb9d159dce4f6358bec5b54c41d3a9d8862e1fe44e145f0087a750
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY0mWDK:hDXWipuE+K3/SSHgxm0JDK

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  JaffaCakes118_f9d2634a8a19bb3ad99f339577eff0ee
- Size
  
  15KB
- MD5
  
  f9d2634a8a19bb3ad99f339577eff0ee
- SHA1
  
  e1015e531dbedee6c3a136abc446bf71bf0def9a
- SHA256
  
  adfc2b34fa603d40ec7b692c2bba35449ec1a7af955ea79a8460b8e543ef4388
- SHA512
  
  e2177744c13e17ba2f31c5b79a386711f8425843d27d69354fcc8c0e54017f18a6e4017d67fb9d159dce4f6358bec5b54c41d3a9d8862e1fe44e145f0087a750
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhY0mWDK:hDXWipuE+K3/SSHgxm0JDK
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2