Analysis
-
max time kernel
141s -
max time network
130s -
platform
windows10-2004_x64 -
resource
win10v2004-20240709-en -
resource tags
arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system -
submitted
26-07-2024 19:28
Static task
static1
Behavioral task
behavioral1
Sample
756680a7636e34dacbdd5e512b7ea589_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
756680a7636e34dacbdd5e512b7ea589_JaffaCakes118.exe
Resource
win10v2004-20240709-en
General
-
Target
756680a7636e34dacbdd5e512b7ea589_JaffaCakes118.exe
-
Size
57KB
-
MD5
756680a7636e34dacbdd5e512b7ea589
-
SHA1
5c176260df6c0f630b323025fcbbb1bd33e9f358
-
SHA256
e208cf63b3295f9e7700673f49f2496bb700c4bba7dea5105c7feee58cff3e6c
-
SHA512
c461054ffbbb7de427ed74c598f5d1da7fec581d3f1d1666c569185c00e7d838d81778ad8758e0775ab3f56bdfafef9946a8601e10f5021921ba1e857812d35b
-
SSDEEP
1536:p2qf1s+ulGW5agHt6d7mqD5ZSqzS/1sOAut:v1haG+aDFS/1
Malware Config
Signatures
-
Loads dropped DLL 2 IoCs
pid Process 4312 756680a7636e34dacbdd5e512b7ea589_JaffaCakes118.exe 4312 756680a7636e34dacbdd5e512b7ea589_JaffaCakes118.exe -
Drops file in Windows directory 1 IoCs
description ioc Process File created C:\WINDOWS\log.dll 756680a7636e34dacbdd5e512b7ea589_JaffaCakes118.exe -
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 756680a7636e34dacbdd5e512b7ea589_JaffaCakes118.exe
Processes
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
16KB
MD5f639dba42b0d6ecbef493c82c03a874e
SHA18980edf18fd5564806ff11cea1ae121ec5775b76
SHA256a4e341492bd1401a5f96e9988f13c22696eca54140a022c0f24bcc710fed8c68
SHA51286eeb5e1fd3ae847467d2223bb084930518294289925cf9e83a0152e87c506b414cdb336d58eda16fe5e657db40bf5eb46b0aa560fb34f30521cec825138a7db