Overview

overview

5

Static

static

3

15ab5c642f...18.exe

windows7-x64

5

15ab5c642f...18.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    148s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05/10/2024, 01:39

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    15ab5c642f878afd46437eee83f0f4c0_JaffaCakes118.exe

  • Size

    465KB

  • MD5

    15ab5c642f878afd46437eee83f0f4c0

  • SHA1

    b10a5dde88b2c72b683ebac83c8378f48b281ecc

  • SHA256

    659c02e91c23cfb5123d260ba28d24dc4422d78ab8d47419178c924c6c888256

  • SHA512

    d191770eed0784f513bcac659f8a09139ecc96750dc63dd482472b1c26ad917080a81f6e67099efafee09b82c2172e8018180f1226012ac2581b5f662f61b5d1

  • SSDEEP

    12288:3kWAehJuqTZl9raCML+nH2YzwIg/UNbekuinXv5LeGWc/Uz9:3kWAAuqlrra9+n1gcNbdG9cMp

Score
5/10
discovery

Malware Config

Signatures

  • Drops file in System32 directory 2 IoCs
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\15ab5c642f878afd46437eee83f0f4c0_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\15ab5c642f878afd46437eee83f0f4c0_JaffaCakes118.exe"
    1⤵
    • Drops file in System32 directory
    • System Location Discovery: System Language Discovery
    PID:4524

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads