6290d583c1b37bf5819406a8128a76ef284040b96aef789de4f3aab8818455e6 | Triage

Sharing

General

Target

JaffaCakes118_f9e0fd5dfff8c99764144f1d7ab15853
Size

16KB
Sample

250111-hh9zwayrf1
MD5

f9e0fd5dfff8c99764144f1d7ab15853
SHA1

921995bd52e980f264d773be02ec6fe667963a11
SHA256

6290d583c1b37bf5819406a8128a76ef284040b96aef789de4f3aab8818455e6
SHA512

4c7d0ff49323462f5419ca73583eb49b48dbfeecca0a4ec8823193ac85655b72876c66fec9c95fb39a066d044d124acea0fefbc804eb48384a6ffc46cd0fc31d
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYvcn:hDXWipuE+K3/SSHgxmkn

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  JaffaCakes118_f9e0fd5dfff8c99764144f1d7ab15853
- Size
  
  16KB
- MD5
  
  f9e0fd5dfff8c99764144f1d7ab15853
- SHA1
  
  921995bd52e980f264d773be02ec6fe667963a11
- SHA256
  
  6290d583c1b37bf5819406a8128a76ef284040b96aef789de4f3aab8818455e6
- SHA512
  
  4c7d0ff49323462f5419ca73583eb49b48dbfeecca0a4ec8823193ac85655b72876c66fec9c95fb39a066d044d124acea0fefbc804eb48384a6ffc46cd0fc31d
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYvcn:hDXWipuE+K3/SSHgxmkn
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2