Overview

overview

4

Static

static

3

b06d0e4aa4...18.exe

windows7-x64

4

b06d0e4aa4...18.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    148s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    20-08-2024 18:53

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b06d0e4aa4d137e54f25e7d7557f5d41_JaffaCakes118.exe

  • Size

    20KB

  • MD5

    b06d0e4aa4d137e54f25e7d7557f5d41

  • SHA1

    c990a5a63e02c81ba0bdf836a16a265445a9c52b

  • SHA256

    78613a776f9904507d3a983e92d5dae24fafc17919ebf83b2b4c7ec6bae3efb4

  • SHA512

    93f0cbce8856c7719c93f7aff6f2d9253a48a37f3e253cdf56d74ed7489d6f58566146204068b7d9843595d7705bbe06bc765f04d134dbef1222a0e22f15b447

  • SSDEEP

    384:TJEHwBR4YOQVCWWmg2w2nXUmO2SUk0r2WzGi:CQBROQVCB72XUmO2SUk0rbG

Score
4/10
discovery

Malware Config

Signatures

  • Drops file in Program Files directory 1 IoCs
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\b06d0e4aa4d137e54f25e7d7557f5d41_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\b06d0e4aa4d137e54f25e7d7557f5d41_JaffaCakes118.exe"
    1⤵
    • Drops file in Program Files directory
    • System Location Discovery: System Language Discovery
    • Suspicious use of SetWindowsHookEx
    PID:4024

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads