Analysis
-
max time kernel
119s -
max time network
120s -
platform
windows7_x64 -
resource
win7-20240704-en -
resource tags
-
submitted
13/08/2024, 15:11
General
-
Target
939cac0b57c93edfede736a2c256121d_JaffaCakes118.exe
-
Size
646KB
-
MD5
939cac0b57c93edfede736a2c256121d
-
SHA1
27c5954d5779d7135995538b6632efb545a6d377
-
SHA256
ded165087962d8416a4ec258e7bb2352e129083a3a52a080b0ecfe38446bb9d1
-
SHA512
0a5718cfbdecaf1e6dad154a52c18179702f78902eae444aefc79ea1be148d381f99a83a22230f8ff2c871491e0a2510c4d1009e7d2eafbb496c0c3d4fb888cf
-
SSDEEP
12288:CXdh2Tl6shTzy1lbC7JY0IM6ax80s8kx4IEqsDSeUESn0pNZ:CXf2h6sJzy1lb8JY0iaS0s8k6zqsDSe3
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: EnumeratesProcesses 1 IoCs
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\939cac0b57c93edfede736a2c256121d_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\939cac0b57c93edfede736a2c256121d_JaffaCakes118.exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
593B
MD55d8767c285ff6b4ed578e6890e0401d8
SHA14062580d62c41cf8870907369b69ecadc4b5a0e3
SHA2560aeefcbadb115c9c2743ba3b4b92b81ec4a061b81a1fa9948ef25a0473b69503
SHA51246bc9122018f5bb8a3e005e70c2b8e93fb11e2f5f043a5d992f4606b936805882feef49c4dc8ba0d54d6ba466dddfe3cf0ff0c29cac9740cb5ea6e26d0a47530