78fa00ae23d5774f63fe6c1d551784a4315e1cafc5819d8720166672582fbb2f | Triage

Sharing

General

Target

JaffaCakes118_fa06181159d36bbedacb464b849b0ec3
Size

16KB
Sample

250111-hmlg3szkaz
MD5

fa06181159d36bbedacb464b849b0ec3
SHA1

354576fec1117a68d02ce8527374d81c1ccb419a
SHA256

78fa00ae23d5774f63fe6c1d551784a4315e1cafc5819d8720166672582fbb2f
SHA512

10f861b83d85fd7553580601bd4d1e9f73fb97058a6891a9825ef9da80c3b6d61127bd4ac256c6b904772eb86fefd27d82619fa9d74b0553653830e1ac3ca5c6
SSDEEP

384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYl0rJHPSU9:hDXWipuE+K3/SSHgxmlOJH7

Score

7^/10

discovery

Malware Config

Targets

- Target
  
  JaffaCakes118_fa06181159d36bbedacb464b849b0ec3
- Size
  
  16KB
- MD5
  
  fa06181159d36bbedacb464b849b0ec3
- SHA1
  
  354576fec1117a68d02ce8527374d81c1ccb419a
- SHA256
  
  78fa00ae23d5774f63fe6c1d551784a4315e1cafc5819d8720166672582fbb2f
- SHA512
  
  10f861b83d85fd7553580601bd4d1e9f73fb97058a6891a9825ef9da80c3b6d61127bd4ac256c6b904772eb86fefd27d82619fa9d74b0553653830e1ac3ca5c6
- SSDEEP
  
  384:hdtXWiJCQxsEwvK3RpSSHuGQG2Rqm4YhYl0rJHPSU9:hDXWipuE+K3/SSHgxmlOJH7
Score

7^/10

discovery
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

behavioral2