904e7cddf61a5b66323a4677485d50ee9443b6ce69625c062d0239735824871a | Triage

Sharing

General

Target

JaffaCakes118_fa042f188b060d63d27dd6d1f388f6f8
Size

14KB
Sample

250111-hmf8cszkat
MD5

fa042f188b060d63d27dd6d1f388f6f8
SHA1

9c944f2d63b630ab37f969bd54bcbaec767759dd
SHA256

904e7cddf61a5b66323a4677485d50ee9443b6ce69625c062d0239735824871a
SHA512

c715af28bb63946bda4a76e564b145fe61bd98b897bf269e1c684d60b9ebb4283ad789dd95fcef4dfa4948da29dc116ec169f6321cc1f7ca8a4ca8d962f80792
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhhg:hDXWipuE+K3/SSHgxzg

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  JaffaCakes118_fa042f188b060d63d27dd6d1f388f6f8
- Size
  
  14KB
- MD5
  
  fa042f188b060d63d27dd6d1f388f6f8
- SHA1
  
  9c944f2d63b630ab37f969bd54bcbaec767759dd
- SHA256
  
  904e7cddf61a5b66323a4677485d50ee9443b6ce69625c062d0239735824871a
- SHA512
  
  c715af28bb63946bda4a76e564b145fe61bd98b897bf269e1c684d60b9ebb4283ad789dd95fcef4dfa4948da29dc116ec169f6321cc1f7ca8a4ca8d962f80792
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4Yhhg:hDXWipuE+K3/SSHgxzg
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2