f045a9eca55ba45e06dbadc664190dcbb61c22e07a64a17fe5c05bd99dd28e19 | Triage

Sharing

General

Target

JaffaCakes118_fa0bda39bd5bb8c5b35950a27156bcc9
Size

20KB
Sample

250111-hm57gszkcs
MD5

fa0bda39bd5bb8c5b35950a27156bcc9
SHA1

3ceec14f46fba6389d0b315cc8a302ebb2eaff25
SHA256

f045a9eca55ba45e06dbadc664190dcbb61c22e07a64a17fe5c05bd99dd28e19
SHA512

ebda50653458d6fe2c8714c8560dcb86aff40624ef22abaab821ddb8600dd77bafaf4514b921e49deba7af8991ee9f96236ba6077fd2fbd5e6e063d16626a1f3
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4ogiA:hDXWipuE+K3/SSHgxmHZoy

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  JaffaCakes118_fa0bda39bd5bb8c5b35950a27156bcc9
- Size
  
  20KB
- MD5
  
  fa0bda39bd5bb8c5b35950a27156bcc9
- SHA1
  
  3ceec14f46fba6389d0b315cc8a302ebb2eaff25
- SHA256
  
  f045a9eca55ba45e06dbadc664190dcbb61c22e07a64a17fe5c05bd99dd28e19
- SHA512
  
  ebda50653458d6fe2c8714c8560dcb86aff40624ef22abaab821ddb8600dd77bafaf4514b921e49deba7af8991ee9f96236ba6077fd2fbd5e6e063d16626a1f3
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYQMx+L4ogiA:hDXWipuE+K3/SSHgxmHZoy
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2