Overview

overview

3

Static

static

3

0cf6bc1975...18.exe

windows7-x64

3

0cf6bc1975...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    148s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02-10-2024 23:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0cf6bc1975f946992964d07137e271ae_JaffaCakes118.exe

  • Size

    997KB

  • MD5

    0cf6bc1975f946992964d07137e271ae

  • SHA1

    1ba92d2fa6e052de2558129f4832791b4e781fba

  • SHA256

    80069ae982baf6a3eb576e743739124f88e90aecdeace7dc92d7e8d597170e4b

  • SHA512

    581cb23ea0311c653b27db4aadad8cca4360b686805f56d499e059a7705531b040239a4567e484b7f864e46b4de91da0b137549ed62f8877df22e0816e888b62

  • SSDEEP

    24576:hUcZ1WuzzUivXkYKRwDetY3zTPWs8d9PM7iC70HDewdRiTsd:hD9huwDetY3zT+sSE7iC70HbdRCI

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\0cf6bc1975f946992964d07137e271ae_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\0cf6bc1975f946992964d07137e271ae_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:4128

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\GM~853D.tmp
    Filesize

    1KB

    MD5

    7a48e7ce73cc1926753fc1c557a5c412

    SHA1

    d0cf0e5a570cac20646adaf94ef31a2346335312

    SHA256

    9c6a49ae5914ff1e6285a141aed1284ca6cf024ee2257ebfbf4f4d82a215b413

    SHA512

    0011d665a7043794984318ed28059b3a1a2870d199d77360a59f747a9337b5c9ba2789a9daa10fc5ced026e0998e0d61c44ca7b8b3a59aef6864c47d61b81a3c

    Download Submit