Analysis
-
max time kernel
141s -
max time network
130s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
-
submitted
11-08-2024 00:11
General
-
Target
883ce79ee545573d1b326686d63b2dc8_JaffaCakes118.exe
-
Size
172KB
-
MD5
883ce79ee545573d1b326686d63b2dc8
-
SHA1
8796b591fa7125df91531ae950c3edd418bb66fb
-
SHA256
1f3a9b00dfdd9b0b17376d01b6dcc934f199b41b6e707e03327724004a172b6f
-
SHA512
cda138ee8b3e7a4c7311dd7ab7c5c1cdc3e57116270e339b45424af6361aa4f02e46b83d6223d248cefe09793d88041583fcb44ada00b541db59ccc6d34b248b
-
SSDEEP
3072:oYDwGrdNmYF0aNcpx047fhiDk1DzL2HzV3Jy1SR2kqQb0L1A:oYDwGraUwLbhiDSDPMBe+xP
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes
-
C:\Users\Admin\AppData\Local\Temp\883ce79ee545573d1b326686d63b2dc8_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\883ce79ee545573d1b326686d63b2dc8_JaffaCakes118.exe"1⤵
- System Location Discovery: System Language Discovery
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4896 -s 2242⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 412 -p 4896 -ip 48961⤵
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
152KB
-
Filesize
308KB