Analysis

  • max time kernel
    148s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23-07-2024 22:27

General

  • Target

    6932ad28b922baacdbbcf0a5fe497400_JaffaCakes118.exe

  • Size

    86KB

  • MD5

    6932ad28b922baacdbbcf0a5fe497400

  • SHA1

    f9012d23df9d9eceba2741d5c8c2331ac9460869

  • SHA256

    5a88721f8e205002cac8ccb3ecc47a0460d7a9c33bf4aa954befc293587db173

  • SHA512

    125deb68cb56fdeae6921fe70cea1ef6843e9363705438dfffed79f69e6bb37f13407c6645d7d0e7118a5ad0759d799b7ca45841e629658fca7c90974079013e

  • SSDEEP

    1536:fLXB65939tY6HBg4sXJQD4DLDdn/uPM6s0AQiODS:fLk395hYXJbjdn/YMmAVODS

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\6932ad28b922baacdbbcf0a5fe497400_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\6932ad28b922baacdbbcf0a5fe497400_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:1872

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads