Analysis

  • max time kernel
    117s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    13-09-2024 06:15

General

  • Target

    ddd6454061dc0946629f7a230d7288b8_JaffaCakes118.exe

  • Size

    334KB

  • MD5

    ddd6454061dc0946629f7a230d7288b8

  • SHA1

    52a17652cbce175b18f2bc5f84c5fdf3ac00bd33

  • SHA256

    46a9e24bf368286feea4a31f92e22f5e3a359f4962e2eb03ffc82d5a80a69f12

  • SHA512

    ec8b7e4b69581fc42368de202d54e6de34c4499e277c3fe4aa32b38a73ae9ca83ad4bd6374a361b5993c9dbcb7d3a16df87d5fe1ccefa28e7b4056f361e29054

  • SSDEEP

    6144:YoIPAvcqQpGAK+EdIL3ePLWCr0g8sdh6oRR+9Pb4NDCKRm9bb3YN9zYjdnGexn3G:YoWuxmK6CrGsHxi2T19zYFLxK

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\ddd6454061dc0946629f7a230d7288b8_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\ddd6454061dc0946629f7a230d7288b8_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2116

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2116-0-0x0000000000400000-0x000000000040C000-memory.dmp

    Filesize

    48KB

  • memory/2116-1-0x0000000000400000-0x000000000040C000-memory.dmp

    Filesize

    48KB