Overview

overview

3

Static

static

3

b0f2e88e94...18.exe

windows7-x64

3

b0f2e88e94...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    19s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    20-08-2024 21:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b0f2e88e94b1ed0167e63b8e9b071f8b_JaffaCakes118.exe

  • Size

    209KB

  • MD5

    b0f2e88e94b1ed0167e63b8e9b071f8b

  • SHA1

    00e1b135d0df564acbdae1e09b7bfd98e8cc9947

  • SHA256

    f52b386bce40b72ff3bb481fbaabe524069515a9fe4ca720c9839cc80d1c5f55

  • SHA512

    babcd8331d3acbef7deeb5641520dea94f74d1ccfff56343255bfc107798abf4b9d6356699c5a8546f1ddfefe06a5d5a363ef31a3dba3e61199832d2dc1726be

  • SSDEEP

    6144:iQ4wny/4+yF1zr8S/X0/PfMDwj8xuVRMzWLkMmE:iQ/y/4+yF5dc/nMk8QbQWQMV

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\b0f2e88e94b1ed0167e63b8e9b071f8b_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\b0f2e88e94b1ed0167e63b8e9b071f8b_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2776

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2776-0-0x00000000001B0000-0x00000000001B1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2776-2-0x00000000001B0000-0x00000000001B1000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2776-1-0x0000000000400000-0x00000000004B2000-memory.dmp

    Filesize

    712KB

    Download