Analysis
-
max time kernel
149s -
max time network
156s -
platform
windows10-2004_x64 -
resource
win10v2004-20240802-en -
resource tags
arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system -
submitted
02-10-2024 02:22
Static task
static1
Behavioral task
behavioral1
Sample
086cdcecfba4044398f361ff7fae0321_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
086cdcecfba4044398f361ff7fae0321_JaffaCakes118.exe
Resource
win10v2004-20240802-en
General
-
Target
086cdcecfba4044398f361ff7fae0321_JaffaCakes118.exe
-
Size
98KB
-
MD5
086cdcecfba4044398f361ff7fae0321
-
SHA1
adfc5437b1e240f6ae8a6e3b1b495e095d857207
-
SHA256
a49f11e354c0edc509faea7b99a116a1ad402c72faa17a9354f7daaea6e03adb
-
SHA512
fad5fce88ff8e7285998ad0fdd87048b5723ea338e84214e0fcd0a20ab8f065ca916c36badef17df69c8c388de19a994075d00d12ab6523144846f4cfd14c232
-
SSDEEP
1536:fCJVWpuVbSn1BlTiQDaKts99iMfg3UzQkOv:fCJXOn7speUzQv
Malware Config
Signatures
-
Drops file in Windows directory 2 IoCs
description ioc Process File created C:\Windows\RLT6990\services.exe 086cdcecfba4044398f361ff7fae0321_JaffaCakes118.exe File created C:\Windows\Drv15\svchost.exe 086cdcecfba4044398f361ff7fae0321_JaffaCakes118.exe -
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 086cdcecfba4044398f361ff7fae0321_JaffaCakes118.exe