Analysis
-
max time kernel
141s -
max time network
138s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
-
submitted
23/08/2024, 00:38
General
-
Target
b9b0dd1ed95fe14a40b73b75d72f1778_JaffaCakes118.exe
-
Size
44KB
-
MD5
b9b0dd1ed95fe14a40b73b75d72f1778
-
SHA1
e9cdc4b301d5b5aceb6b20323c0b7d42bdafc97e
-
SHA256
3944435c63235468d8961d485fcfe686de58ecfd841f3335c576fdbb3b5dc600
-
SHA512
ab7f2eec3abd5a04520ad12f9653a995eb95ea6191d1401f3af64331cff6e617a5f5f52e7e7d00de78f46cc758e4788ec1aba145fd2f1e3c1df2427cd3c90c11
-
SSDEEP
768:wOwUn4zOBSpQn3GLe0C6OzhBHcN++7xwHAwHLHYi+:wOwa4zVpuyu66BHc1OHAwHLHYi+
Score
3/10
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\b9b0dd1ed95fe14a40b73b75d72f1778_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\b9b0dd1ed95fe14a40b73b75d72f1778_JaffaCakes118.exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of SetWindowsHookEx
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=4452,i,15336851255456239337,16379811035920490645,262144 --variations-seed-version --mojo-platform-channel-handle=4612 /prefetch:81⤵