Analysis
-
max time kernel
121s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240708-en -
resource tags
arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system -
submitted
14/08/2024, 08:44
Behavioral task
behavioral1
Sample
95609625fee4ae7816c3d60d3e98eb4c_JaffaCakes118.exe
Resource
win7-20240708-en
2 signatures
150 seconds
General
-
Target
95609625fee4ae7816c3d60d3e98eb4c_JaffaCakes118.exe
-
Size
132KB
-
MD5
95609625fee4ae7816c3d60d3e98eb4c
-
SHA1
2a31844a73e5f3c3f90ecf0748b642cb74e420d3
-
SHA256
8d7fab9c0787966069049b778980de9358abba2104e6fb9f984133e02958846d
-
SHA512
933cdd954eca7ca269bb52d9030c884690060d86d75aac6b4440a05f38136606c796eadc3d4e4b3dbc09f08846a157bf06b074688f2cd97c49d3bb95e2d47fba
-
SSDEEP
3072:8CmfaxDN8Le/uJ36x0/Nui2IJGcu/xc3xQfCjrbJiXFQ:8CDuXJk0/0pI0cqxc21
Malware Config
Signatures
-
resource yara_rule behavioral1/memory/2252-0-0x0000000000400000-0x0000000000435000-memory.dmp upx -
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 95609625fee4ae7816c3d60d3e98eb4c_JaffaCakes118.exe