Analysis
-
max time kernel
149s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
11-08-2024 07:09
Static task
static1
Behavioral task
behavioral1
Sample
89753d8050a2a41c24f85dd57b0a5a72_JaffaCakes118.exe
Resource
win7-20240729-en
Behavioral task
behavioral2
Sample
89753d8050a2a41c24f85dd57b0a5a72_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
89753d8050a2a41c24f85dd57b0a5a72_JaffaCakes118.exe
-
Size
262KB
-
MD5
89753d8050a2a41c24f85dd57b0a5a72
-
SHA1
8cb52e457c31bd78c157e7305941135c0db4294f
-
SHA256
f18bd979ea4eb2d374bef76270bc02ac31955bd421b911864ded3b2ccae2fb20
-
SHA512
dc788a715ba4b0ee4cf8450c7ee1e93d3b8b7cf10bb6968c62f7cce141e3bbe63c18feae29f52e590d3b2c27fdc0fc23544de1785b0bd980c882a4742c885230
-
SSDEEP
6144:iS8Gp+df0afmVTRMd/dpn94sLrNXel9Ab98+MA7U:F8YkfXf4TRMx94svNuzAb9ZC
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes:
89753d8050a2a41c24f85dd57b0a5a72_JaffaCakes118.exedescription ioc process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 89753d8050a2a41c24f85dd57b0a5a72_JaffaCakes118.exe