Overview

overview

7

Static

static

7

b8f939f716...18.exe

windows7-x64

3

b8f939f716...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    148s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    22-08-2024 20:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    b8f939f716ffea24c1877bd0a9e8dd7d_JaffaCakes118.exe

  • Size

    652KB

  • MD5

    b8f939f716ffea24c1877bd0a9e8dd7d

  • SHA1

    e19fd046edff4856dfef1c3702a4e66771876399

  • SHA256

    1ce35b821de4591f4844ca57db7b7919fae569d0211e050d23a74aa9ab958a76

  • SHA512

    f31b5b7e1a741c2f53e29b16aca34f3f4080ee1828ffa27fb537a6502bcd8153c777a02eb767404d4347f71c39bd722357a269528a040abd98ba3f86c45d189a

  • SSDEEP

    12288:LVCr8nmnxic4MKy5Jfwv0bwrKGa/F28xMwDX8FheoC+5WOEnlFNR2dmw/gBxIW33:ZCEYR4MKsJ4v0U2fN242zXElzA/gB

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\b8f939f716ffea24c1877bd0a9e8dd7d_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\b8f939f716ffea24c1877bd0a9e8dd7d_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:1396

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1396-0-0x0000000000BA0000-0x0000000000BF4000-memory.dmp

    Filesize

    336KB

    Download

  • memory/1396-1-0x0000000000400000-0x0000000000572000-memory.dmp

    Filesize

    1.4MB

    Download

  • memory/1396-2-0x0000000000BA0000-0x0000000000BF4000-memory.dmp

    Filesize

    336KB

    Download