Analysis
-
max time kernel
125s -
max time network
127s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
-
submitted
28-09-2024 22:07
General
-
Target
fd3cc725cee1b57cfc24c77c3f5a62df_JaffaCakes118.exe
-
Size
144KB
-
MD5
fd3cc725cee1b57cfc24c77c3f5a62df
-
SHA1
62901ff80f018ef99257b14da895acca57d5a6d6
-
SHA256
348dee9a54c80df9c65d0af2197daad42ad796f6e0a1c625191effb21dee936c
-
SHA512
33cfdb224c6301257419f9a107458e6ad1970659b141a66adc498b5bde9689c6ed25a7ee896952d0a0e91098104902acbadaedd5a51085f4e80401e78136002c
-
SSDEEP
3072:ZgQ4M3GPabC29W29z29g29929q29v29U29529u29L29o29l29i29H29c29h29G2Y:y29W29z29g29929q29v29U29529u29L9
Score
3/10
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
-
Suspicious use of SetWindowsHookEx 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\fd3cc725cee1b57cfc24c77c3f5a62df_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\fd3cc725cee1b57cfc24c77c3f5a62df_JaffaCakes118.exe"1⤵
- System Location Discovery: System Language Discovery
- Suspicious use of SetWindowsHookEx
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --field-trial-handle=4316,i,10065386245627775856,6567048529106473151,262144 --variations-seed-version --mojo-platform-channel-handle=4276 /prefetch:81⤵