Analysis

  • max time kernel
    94s
  • max time network
    95s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/10/2024, 05:58

General

  • Target

    38b9717405dfa21c94a01e84cadfe75c_JaffaCakes118.exe

  • Size

    52KB

  • MD5

    38b9717405dfa21c94a01e84cadfe75c

  • SHA1

    ae0544603e4fd3c882ffb31b5bea2ca782c11909

  • SHA256

    9be726dbe62857a8cb1481f147e8861e4c02e9064e146d1c3c75b200a32c3f17

  • SHA512

    9dc4a2b0089cfe28a7f4e1970b2588f976c83ed2a13c5deb1d46f94506058007e01fe559365267424c6ad3d82675dcf3701fd7cc3325cea5b374adde46bb659f

  • SSDEEP

    384:7i1XeX9SyjgpWA5Or9IhBKT0CF0YrNlqR2NYm1dyyAv13JsvHOeskCWHy/:eXYB0UcOrYKTLbDDQRJSH3skCq

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

  • Modifies registry class 64 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\38b9717405dfa21c94a01e84cadfe75c_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\38b9717405dfa21c94a01e84cadfe75c_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    • Modifies registry class
    PID:1888

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads