Overview

overview

3

Static

static

3

81c3470111...18.exe

windows7-x64

1

81c3470111...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    93s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240730-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240730-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01-08-2024 20:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    81c3470111b05213b768c7107f16fd95_JaffaCakes118.exe

  • Size

    48KB

  • MD5

    81c3470111b05213b768c7107f16fd95

  • SHA1

    0cc15950423e217f9eb7fcc8a57438d293c58c46

  • SHA256

    5cc454d81c223f2050086bd8f878f6752201679252917e67eb051387e2c6c195

  • SHA512

    efd61d20726abe08dc1a9db3424bc51c98b6e8b3c0d8d82ed7cf4bea39f7a0133cbb1550a7224821e0a6c0458d35860b976464e5352e84736cec56721349be5c

  • SSDEEP

    768:lVGYXjvS01cvoHSNqE/MSp11B3WjFYQNGr4W8W+YjWTYvtDas72wg44nBZwFCiu:lVSzkS0EHWRYQNS4W8WJVtDah4oaCr

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\81c3470111b05213b768c7107f16fd95_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\81c3470111b05213b768c7107f16fd95_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2892

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2892-0-0x0000000000400000-0x0000000000426000-memory.dmp

    Filesize

    152KB

    Download

  • memory/2892-1-0x0000000000400000-0x0000000000426000-memory.dmp

    Filesize

    152KB

    Download