Analysis

  • max time kernel
    94s
  • max time network
    95s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    05/10/2024, 11:36

General

  • Target

    17886610bbf862f2b19241cc4045d72d_JaffaCakes118.exe

  • Size

    1.6MB

  • MD5

    17886610bbf862f2b19241cc4045d72d

  • SHA1

    daacb179165c1319b3b01d402114f5b3e78cbedc

  • SHA256

    eff8eec4b29391c96a345288b093c1606e681ff774594cafa7a7d15d51a94273

  • SHA512

    a7c94d2d1ef12a8a5ac6c43aee82fb5d0ab488317eb67e6141df8a853c441a528b5f323de5936b08927ac07306175000582ae11ff2fbaad5478c8595edcf5e42

  • SSDEEP

    49152:hD9huwDetY3zT+Y/1MgSFd2RDAuJ9+u6iIk:p9IwDetYuYugSB5u6xk

Score
3/10

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

Processes

  • C:\Users\Admin\AppData\Local\Temp\17886610bbf862f2b19241cc4045d72d_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\17886610bbf862f2b19241cc4045d72d_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2784

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\GM~975E.tmp

    Filesize

    1KB

    MD5

    7a48e7ce73cc1926753fc1c557a5c412

    SHA1

    d0cf0e5a570cac20646adaf94ef31a2346335312

    SHA256

    9c6a49ae5914ff1e6285a141aed1284ca6cf024ee2257ebfbf4f4d82a215b413

    SHA512

    0011d665a7043794984318ed28059b3a1a2870d199d77360a59f747a9337b5c9ba2789a9daa10fc5ced026e0998e0d61c44ca7b8b3a59aef6864c47d61b81a3c