Analysis
-
max time kernel
97s -
max time network
149s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
14-09-2024 10:15
Static task
static1
Behavioral task
behavioral1
Sample
dffc0fc6e53acd1dbb45de7f7de520db_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
dffc0fc6e53acd1dbb45de7f7de520db_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
dffc0fc6e53acd1dbb45de7f7de520db_JaffaCakes118.exe
-
Size
460KB
-
MD5
dffc0fc6e53acd1dbb45de7f7de520db
-
SHA1
ff35532e779ea39e71ae3faceedf37e15fec01d6
-
SHA256
4a55bc2cdaef1556589c3a1f1da0b21fe95b98ac466c550fb4d2277025a2e265
-
SHA512
f8a43e1cac7bcbf449fbcdc56da3b2fb998770c3602bb347fffbab03a5dfa5db9d69199dcb2b0b3c7fb8e88ef0cc3fe4339c9e99da9b8359ae711dfdf5231577
-
SSDEEP
6144:2GI9BfloQOVPk5Es0IqeY02lI1spHINHlo7uR1vzOIW7UNeqTuSzgJL/qChtClno:2GI9BfloxdfIqpJHIllaezOIuUAqa3e
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes:
dffc0fc6e53acd1dbb45de7f7de520db_JaffaCakes118.exedescription ioc process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language dffc0fc6e53acd1dbb45de7f7de520db_JaffaCakes118.exe -
Suspicious use of SetWindowsHookEx 2 IoCs
Processes:
dffc0fc6e53acd1dbb45de7f7de520db_JaffaCakes118.exepid process 3540 dffc0fc6e53acd1dbb45de7f7de520db_JaffaCakes118.exe 3540 dffc0fc6e53acd1dbb45de7f7de520db_JaffaCakes118.exe