Analysis
-
max time kernel
139s -
max time network
123s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
-
submitted
11/08/2024, 16:34
General
-
Target
8b1d6954c338ee11a305c93d9da913b9_JaffaCakes118.exe
-
Size
12KB
-
MD5
8b1d6954c338ee11a305c93d9da913b9
-
SHA1
ee43ad73d77bf13311aba5e3b82b4866b9f3b8eb
-
SHA256
43f693b7cfd9bf52ad7fff8a6894eedc7bc14cbe8edc5316caa290938c4e368b
-
SHA512
e9e4cee51300a01e76b0137c41b7609d3d4563226ebbcb5757b673206bd0cf67782d4c79f09122511333e6e3e3ac1603f9efb2b318728c0797e2b46d82e895cc
-
SSDEEP
192:H6Z5Dr6GNEu6Z5Dr6GNbHfG9HgvhHyPMSdUMEtxZoLj2TgVg:6+TRyAyOHZkCTgVg
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes
-
C:\Users\Admin\AppData\Local\Temp\8b1d6954c338ee11a305c93d9da913b9_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\8b1d6954c338ee11a305c93d9da913b9_JaffaCakes118.exe"1⤵
- System Location Discovery: System Language Discovery
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 4780 -s 2162⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 404 -p 4780 -ip 47801⤵
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
32KB