7aced28ac7c72e24cf01003ec6dc8a3caccbc4c91d80a85adf73afcdd68e3129 | Triage

Sharing

General

Target

JaffaCakes118_f9ea660927ad413a59dcd8f1b681bfda
Size

24KB
Sample

250111-hjxqyazjaz
MD5

f9ea660927ad413a59dcd8f1b681bfda
SHA1

a7b61c440bdaabc689fac753dcd0ad1356d8dc03
SHA256

7aced28ac7c72e24cf01003ec6dc8a3caccbc4c91d80a85adf73afcdd68e3129
SHA512

7e721cdcddf42061b155c4b356f6fd5659303c79c08cca8567c07349f338bc493a97b47b2e7ce665a982c71515ee86378a93a01fe64e2d1c7265a4948e7ebd66
SSDEEP

384:iXET14X4f0y4nQSMSq8FO8Mx+kGJGOfU+OWiPymAa8JEdzXa:HT1g40wSXvdMx+v3f1OWiPy3j

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  JaffaCakes118_f9ea660927ad413a59dcd8f1b681bfda
- Size
  
  24KB
- MD5
  
  f9ea660927ad413a59dcd8f1b681bfda
- SHA1
  
  a7b61c440bdaabc689fac753dcd0ad1356d8dc03
- SHA256
  
  7aced28ac7c72e24cf01003ec6dc8a3caccbc4c91d80a85adf73afcdd68e3129
- SHA512
  
  7e721cdcddf42061b155c4b356f6fd5659303c79c08cca8567c07349f338bc493a97b47b2e7ce665a982c71515ee86378a93a01fe64e2d1c7265a4948e7ebd66
- SSDEEP
  
  384:iXET14X4f0y4nQSMSq8FO8Mx+kGJGOfU+OWiPymAa8JEdzXa:HT1g40wSXvdMx+v3f1OWiPy3j
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2