Overview

overview

4

Static

static

3

09bd1cea98...18.exe

windows7-x64

4

09bd1cea98...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    148s
  • max time network
    149s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    02/10/2024, 08:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    09bd1cea98ce40938f158a15101c043e_JaffaCakes118.exe

  • Size

    1.1MB

  • MD5

    09bd1cea98ce40938f158a15101c043e

  • SHA1

    41bf7bb02af4dbf1cb4ee3a00f5a6f7884ce22fa

  • SHA256

    688f5a09f3743b938098a9401a9fef06e89e4d40f8f1cf4e947b43c2edf9a43d

  • SHA512

    c7f4b8b980aa93e42f9d5b9283b6371187a61bd4b16ecf7431ac39388d22df044594f4c820cc2e7c1f59ad7c5575f07565f4b50dd53d33782652fc5c8cd0eebb

  • SSDEEP

    24576:ZIm+ZCy2qohcNdFUwX+RKtecZB7v5SgHF+UbtevIASi5dz9FGG2:ZMYrqvFUwXgKwgl+OgvI4/g

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\09bd1cea98ce40938f158a15101c043e_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\09bd1cea98ce40938f158a15101c043e_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious use of SetWindowsHookEx
    PID:3200

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads