d559f1fab9b764655802134093695ea64e0e6b2312f44a2a4313bff0cb537e25 | Triage

Sharing

General

Target

JaffaCakes118_f9df9e4debd65763912364666a964472
Size

15KB
Sample

250111-hh2y9ssjhj
MD5

f9df9e4debd65763912364666a964472
SHA1

75069a5516019a2e9a354b2a5d2b6ae5a51cf9e9
SHA256

d559f1fab9b764655802134093695ea64e0e6b2312f44a2a4313bff0cb537e25
SHA512

2f88abad025a57526dded702728b299b548e93672c45b41902d70b8b2461e30c16bab2dae2efcd8a3059d2c36f73dc3f11bfc8d4ea6699e0d472f4aa422ffb30
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYuSJg:hDXWipuE+K3/SSHgxmTe

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  JaffaCakes118_f9df9e4debd65763912364666a964472
- Size
  
  15KB
- MD5
  
  f9df9e4debd65763912364666a964472
- SHA1
  
  75069a5516019a2e9a354b2a5d2b6ae5a51cf9e9
- SHA256
  
  d559f1fab9b764655802134093695ea64e0e6b2312f44a2a4313bff0cb537e25
- SHA512
  
  2f88abad025a57526dded702728b299b548e93672c45b41902d70b8b2461e30c16bab2dae2efcd8a3059d2c36f73dc3f11bfc8d4ea6699e0d472f4aa422ffb30
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYuSJg:hDXWipuE+K3/SSHgxmTe
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2