eac81d1cd5b67eb31b73b1835a3a0f19e5465a3371d39a361aa5d2f95e78f635 | Triage

Sharing

General

Target

JaffaCakes118_f9f7c996d9d37bf4ff3a2a12ef235fa4
Size

14KB
Sample

250111-hk5g6sskeq
MD5

f9f7c996d9d37bf4ff3a2a12ef235fa4
SHA1

6bde65981ad37dede323033d29bfc15cabbefac5
SHA256

eac81d1cd5b67eb31b73b1835a3a0f19e5465a3371d39a361aa5d2f95e78f635
SHA512

f419f5a5660f8853a9f231f2b9026ca83b3559c26faf1fc979f7766bb83b7507e5c241df6bacd81e41f7ba83574fc3cda9a0c3d12d8b3507f775906efd9487a7
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhX:hDXWipuE+K3/SSHgxx

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  JaffaCakes118_f9f7c996d9d37bf4ff3a2a12ef235fa4
- Size
  
  14KB
- MD5
  
  f9f7c996d9d37bf4ff3a2a12ef235fa4
- SHA1
  
  6bde65981ad37dede323033d29bfc15cabbefac5
- SHA256
  
  eac81d1cd5b67eb31b73b1835a3a0f19e5465a3371d39a361aa5d2f95e78f635
- SHA512
  
  f419f5a5660f8853a9f231f2b9026ca83b3559c26faf1fc979f7766bb83b7507e5c241df6bacd81e41f7ba83574fc3cda9a0c3d12d8b3507f775906efd9487a7
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhX:hDXWipuE+K3/SSHgxx
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2