Analysis
-
max time kernel
131s -
max time network
133s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
-
submitted
12-08-2024 12:03
General
-
Target
8eabb7fa2473b41ce20ef3c92b88a5cf_JaffaCakes118.exe
-
Size
1.4MB
-
MD5
8eabb7fa2473b41ce20ef3c92b88a5cf
-
SHA1
7d51d631bbcc35779b5c948121058604f7bd6283
-
SHA256
0d10be356fa344a3d279f5fcb742ce3544d5922dbe4e7e2ca8284175126ef722
-
SHA512
c71f6da0219d354dfef4ff1cdd9daa21f0206ae4ff10b88eef4ebbd3a82e618d74822664711b39d0ee019e87c617d27f5a958e1d8f4d7873acbbbd42e166b490
-
SSDEEP
24576:uAg9SYU759pP7Q36EXc8f2FfWl8KuqGavkg3NyNIbbbIoIBAUZLYgY:u9650qEXR+s8KuqGaX0ToIBAUZLYgY
Score
3/10
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\8eabb7fa2473b41ce20ef3c92b88a5cf_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\8eabb7fa2473b41ce20ef3c92b88a5cf_JaffaCakes118.exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of SetWindowsHookEx
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=4384,i,2904906934812054273,11716976550456127484,262144 --variations-seed-version --mojo-platform-channel-handle=3820 /prefetch:81⤵