Analysis
-
max time kernel
95s -
max time network
97s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system -
submitted
11-10-2024 21:24
Static task
static1
Behavioral task
behavioral1
Sample
36e1da9c2105f993f910df0286ba8453_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
36e1da9c2105f993f910df0286ba8453_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
36e1da9c2105f993f910df0286ba8453_JaffaCakes118.exe
-
Size
1.0MB
-
MD5
36e1da9c2105f993f910df0286ba8453
-
SHA1
f8094d5ab71e8bfe683b1972f03c2f2dff934958
-
SHA256
ab071b49cdc6e1c8044d51813be3fbc43be9b1670b4c3ce62abee6c136a759fe
-
SHA512
24775cc8a2c96979d7b69e1a358ebac3500b9649536b265981191e79aeeb602016cd4b3703ba4de66bf3ded827178baa3fd3339a6923065a791a68c61dfc26ea
-
SSDEEP
24576:mT4UlaYUHGb5bjHvh7qZUpVKAzrP/GMjF7YsnnAcKQCWBc:Cz5b5JeZUCM/HPvKr
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
description ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 36e1da9c2105f993f910df0286ba8453_JaffaCakes118.exe