Overview

overview

3

Static

static

3

6f391767e0...18.exe

windows7-x64

1

6f391767e0...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    154s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25/07/2024, 10:34

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    6f391767e0ee794cf78b7228d6348717_JaffaCakes118.exe

  • Size

    95KB

  • MD5

    6f391767e0ee794cf78b7228d6348717

  • SHA1

    28736101a6e2c104b70cc3d9da1956e56d533d4d

  • SHA256

    c98463e5e097274ed3e48a01528176c3ea367e67b7dd6680385502888a60245f

  • SHA512

    3f552273421750640e5ca959ed74672da9f4c086403fbbee393a463b4072e0b559368628b17ef4bccf0ae9b32c5a5fc770f2880c0304af1a18b1102bc6d23e0c

  • SSDEEP

    1536:GXVsTahP0LMbsLLX3e/uUO36dxf/1YIFM0MyB7fj9UGwK53cftod:GGWhP0LMkLHHUOyJ1YIFM0z9UmM

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\6f391767e0ee794cf78b7228d6348717_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\6f391767e0ee794cf78b7228d6348717_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:1060

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/1060-0-0x0000000000400000-0x0000000000427000-memory.dmp

          Filesize

          156KB

          Download

        • memory/1060-1-0x0000000000400000-0x0000000000427000-memory.dmp

          Filesize

          156KB

          Download