Analysis
-
max time kernel
148s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20240709-en -
resource tags
arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system -
submitted
23-07-2024 22:27
Static task
static1
Behavioral task
behavioral1
Sample
6932ad28b922baacdbbcf0a5fe497400_JaffaCakes118.exe
Resource
win7-20240705-en
Behavioral task
behavioral2
Sample
6932ad28b922baacdbbcf0a5fe497400_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
6932ad28b922baacdbbcf0a5fe497400_JaffaCakes118.exe
-
Size
86KB
-
MD5
6932ad28b922baacdbbcf0a5fe497400
-
SHA1
f9012d23df9d9eceba2741d5c8c2331ac9460869
-
SHA256
5a88721f8e205002cac8ccb3ecc47a0460d7a9c33bf4aa954befc293587db173
-
SHA512
125deb68cb56fdeae6921fe70cea1ef6843e9363705438dfffed79f69e6bb37f13407c6645d7d0e7118a5ad0759d799b7ca45841e629658fca7c90974079013e
-
SSDEEP
1536:fLXB65939tY6HBg4sXJQD4DLDdn/uPM6s0AQiODS:fLk395hYXJbjdn/YMmAVODS
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 6932ad28b922baacdbbcf0a5fe497400_JaffaCakes118.exe