Analysis
-
max time kernel
139s -
max time network
128s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
-
submitted
23/08/2024, 06:10
General
-
Target
baa77d5e2bb3256777c28ac55f5b540c_JaffaCakes118.exe
-
Size
108KB
-
MD5
baa77d5e2bb3256777c28ac55f5b540c
-
SHA1
f59da502847605788684ecf69944cf184d548be6
-
SHA256
e5c412d9b70521be5562fd810c668273fb51575356761b3f0ed82cb67e4b7193
-
SHA512
b59eb88bd9ffe0c1ff118bfd222a21e64d8bac9fb7d34626df9ec773d11197c36ef0a9bab187691d218e1bce5d23bae6752f8f4f6f66c1c8cddd9f6e99aa85ea
-
SSDEEP
3072:ckL/CX4CB3FPWMH+Tj4IdIKfy4ROFaKMPXGgmrHYBol+6kkkkvcegtL0un4sm5/T:ckL+4CB3FPVH+Tj4IdIoKMPXGgmrHYBG
Score
3/10
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious use of SetWindowsHookEx 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\baa77d5e2bb3256777c28ac55f5b540c_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\baa77d5e2bb3256777c28ac55f5b540c_JaffaCakes118.exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of SetWindowsHookEx
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=3996,i,1729213506309163284,12809566808978835441,262144 --variations-seed-version --mojo-platform-channel-handle=3860 /prefetch:81⤵