Overview

overview

3

Static

static

3

a699811f92...18.exe

windows7-x64

3

a699811f92...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    144s
  • max time network
    132s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    18/08/2024, 11:27

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    a699811f92fdd2e5ac5302debd69ef7b_JaffaCakes118.exe

  • Size

    84KB

  • MD5

    a699811f92fdd2e5ac5302debd69ef7b

  • SHA1

    953625fef3036bff45fd7c8b1bbb5f0bfecd3be3

  • SHA256

    b862798c35ee4685f0d573b51458d4365fc7908098c79e5ebaf6d1ad97ab6032

  • SHA512

    cbab478d060f7fa56fd5d10973dffa4a6d9ad59425c5b4861687018d8ea1c33a5d9213835e48fa622e1530f3aae244d876446997c481dd42d77a3d9ff3a60f44

  • SSDEEP

    768:zaOGVlf+iW4D/z0uwMf9wVTO6pN3QgF4AERx3pzsT+7lz:WOX4D70sf4pN3QXAERRpz

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\a699811f92fdd2e5ac5302debd69ef7b_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\a699811f92fdd2e5ac5302debd69ef7b_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious use of SetWindowsHookEx
    PID:988

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads