3d615a756c1bff2d17fc837ad0a7147466b0d8b96986dc3c8f7c16df76e6e59c | Triage

Sharing

General

Target

JaffaCakes118_f9e4724d8c0420ca64d7f092dc48c2b7
Size

15KB
Sample

250111-hjm7hayrhz
MD5

f9e4724d8c0420ca64d7f092dc48c2b7
SHA1

12ccb6299b339b7db145b991627a985ecd5b15b8
SHA256

3d615a756c1bff2d17fc837ad0a7147466b0d8b96986dc3c8f7c16df76e6e59c
SHA512

145fc7ebb4d367563c0f0a772bc04d3063d114a1fa4249f8ca2ead8aaf7e944fe6043f8c347da7d951ac1859eb64bc39acaaab9c2cc731bc2bfc418e1b4b3527
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJd8Z:hDXWipuE+K3/SSHgxh8Z

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  JaffaCakes118_f9e4724d8c0420ca64d7f092dc48c2b7
- Size
  
  15KB
- MD5
  
  f9e4724d8c0420ca64d7f092dc48c2b7
- SHA1
  
  12ccb6299b339b7db145b991627a985ecd5b15b8
- SHA256
  
  3d615a756c1bff2d17fc837ad0a7147466b0d8b96986dc3c8f7c16df76e6e59c
- SHA512
  
  145fc7ebb4d367563c0f0a772bc04d3063d114a1fa4249f8ca2ead8aaf7e944fe6043f8c347da7d951ac1859eb64bc39acaaab9c2cc731bc2bfc418e1b4b3527
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhJd8Z:hDXWipuE+K3/SSHgxh8Z
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2