Overview

overview

3

Static

static

3

bb03b25f40...18.exe

windows7-x64

3

bb03b25f40...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    141s
  • max time network
    123s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    23-08-2024 08:34

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    bb03b25f4072f2ee93ad1b2e316aa751_JaffaCakes118.exe

  • Size

    168KB

  • MD5

    bb03b25f4072f2ee93ad1b2e316aa751

  • SHA1

    22faaa0b0b2875f0988b2d3ae988c458e67db40b

  • SHA256

    c9b0dbc19155acf5487a1f00b9fdbbac65e7878c7e45ebab3502aed5d0fdcffb

  • SHA512

    340218110d219520b2b2dc1cefccd90a6f63b77b3057e2f1af68b1b7f62d51abdf29d441d554551779fa4fcf6310efee570474b1d7d28b70daf8207b570901f8

  • SSDEEP

    3072:9W8+heVNMnLl4iKPS/Qwp6+z2OIKrC73sBg3zMijP:F+hZnLl+P1wIlOb2sWjP

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\bb03b25f4072f2ee93ad1b2e316aa751_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\bb03b25f4072f2ee93ad1b2e316aa751_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:1288

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1288-0-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/1288-2-0x000000000045A000-0x0000000000462000-memory.dmp

    Filesize

    32KB

    Download

  • memory/1288-1-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download

  • memory/1288-3-0x0000000000400000-0x0000000000462000-memory.dmp

    Filesize

    392KB

    Download