Overview

overview

3

Static

static

3

04d29052c9...18.exe

windows7-x64

3

04d29052c9...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    94s
  • max time network
    95s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01/10/2024, 07:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    04d29052c9a0a16fc33ca2f55fca4f16_JaffaCakes118.exe

  • Size

    20KB

  • MD5

    04d29052c9a0a16fc33ca2f55fca4f16

  • SHA1

    f8864278cd0cb56aceb820cc25d5752083ec1ae4

  • SHA256

    f74bd62fee70dfc78da4a0d67c6ec88a4ab10853e1774cd57aac95b895dd021b

  • SHA512

    a9b7ae623893f5c8af0b6b02eb2eff7e2b8100a9a308a8b7976f654d1c41f8bade918bba5891800072f215594b1d649bbdbe8e37b4da3710fc4f1badba6cb96e

  • SSDEEP

    192:att+ELGsDi8DHbpI3RZjt9FgEmaNjZNFEb:attDD70mVaNj7FEb

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\04d29052c9a0a16fc33ca2f55fca4f16_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\04d29052c9a0a16fc33ca2f55fca4f16_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious use of SetWindowsHookEx
    PID:944

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads