Analysis
-
max time kernel
136s -
max time network
141s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
-
submitted
08-09-2024 03:10
General
-
Target
d365b15e39debafda1e950646c78a3ec_JaffaCakes118.exe
-
Size
40KB
-
MD5
d365b15e39debafda1e950646c78a3ec
-
SHA1
7e20aebdcfd44fa2310f75657b490207f9b01aa9
-
SHA256
c5d243669ff6da1973179d88b8aba5a060021eb255e641652f71ccb5a238a2c2
-
SHA512
bcf19956b4ba7587b00048db489ff5188d931f2d6cd236e44eda77dfe5b237529dcc2744265dcd3ea79d7db21af45a197ae6e0bea4753f9ce126d4aa8810a65d
-
SSDEEP
384:1m/r5On/J15xVihvx5ZMaQah298aooX15Gs1m8eRWh5kNGXDEWynlM:1m/En/J15xYhv7Z5FSduseWh5RzMlM
Score
3/10
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\d365b15e39debafda1e950646c78a3ec_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\d365b15e39debafda1e950646c78a3ec_JaffaCakes118.exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of SetWindowsHookEx
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=4452,i,15336851255456239337,16379811035920490645,262144 --variations-seed-version --mojo-platform-channel-handle=4012 /prefetch:81⤵