Analysis
-
max time kernel
118s -
max time network
119s -
platform
windows7_x64 -
resource
win7-20240705-en -
resource tags
-
submitted
13/08/2024, 15:14
General
-
Target
939f3ead5c0df3e284c1bdf37178bd7f_JaffaCakes118.exe
-
Size
646KB
-
MD5
939f3ead5c0df3e284c1bdf37178bd7f
-
SHA1
a3f4d7adfb7f1fbc2e02399bb10dc185626b2e6c
-
SHA256
89e92399d8c07c551197143c73b49cb03e6eddff8ab3ea7e29ab80a01aba9019
-
SHA512
e4eb2ca112d63701884cb6c35799c826c23b2cd7a8c9ffc38f28fc21f00cf69cb8094af94ed1cf6d2ce89486a26231b000b5010d0184c4b11dce2c00042d8619
-
SSDEEP
12288:/Xdh2Tl6shTzy1lbC7JY0IM6ax80s8kx4IEqsDSeUESn0pIw:/Xf2h6sJzy1lb8JY0iaS0s8k6zqsDSej
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious behavior: EnumeratesProcesses 1 IoCs
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\939f3ead5c0df3e284c1bdf37178bd7f_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\939f3ead5c0df3e284c1bdf37178bd7f_JaffaCakes118.exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious behavior: EnumeratesProcesses
- Suspicious use of SetWindowsHookEx
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
584B
MD5ea26f37d353c3c79c3af9ccbbee7f55f
SHA1444d19930e77e0b9e4b81c4e8b540b0573c8072a
SHA256c4f6bb9bbc9366c2c15b504caf139a42f0690f185cf948a8ed5a466ee1528d51
SHA51234f9702461c07277a3782cb94f56139d88d5b3de9c6e4b8e30d29a75048971433309d7b2a4485afe81eff814d8e6af642aa7eaed74a5176d94109c1a29615087