Analysis
-
max time kernel
138s -
max time network
127s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
-
submitted
14/08/2024, 08:59
General
-
Target
956c246792d7e78fbea7485b06330a86_JaffaCakes118.exe
-
Size
612KB
-
MD5
956c246792d7e78fbea7485b06330a86
-
SHA1
ca0f6810e3b1df04dd94215d73e33005c6325947
-
SHA256
ba91f1002c0f7c9013265adc0363d72ea45016aaff39cd848b588bb6022cbed7
-
SHA512
24b08686563a5a9da827344358ebf226002d4b899944bb1ed995718ebac12e3376d37cbf02e103e3c3f0b43326a32afa518cb3eae7bb0fee26427f5a019331e0
-
SSDEEP
12288:BlG5lH69fUlu05GrgJLQC+CAbILrapiJIMUYvzLO0yt3:BQfkEJk3dGrapiJDUY76Vt3
Score
3/10
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\956c246792d7e78fbea7485b06330a86_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\956c246792d7e78fbea7485b06330a86_JaffaCakes118.exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of SetWindowsHookEx
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=3840,i,8231329449558834090,4540802069600791165,262144 --variations-seed-version --mojo-platform-channel-handle=4464 /prefetch:81⤵