Overview

overview

3

Static

static

3

4396e23a44...18.exe

windows7-x64

3

4396e23a44...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    139s
  • max time network
    136s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14-10-2024 18:26

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4396e23a4407ea0098936b62a66b1288_JaffaCakes118.exe

  • Size

    487KB

  • MD5

    4396e23a4407ea0098936b62a66b1288

  • SHA1

    c1ae04c8a528f9497eff2045f700354836304cfb

  • SHA256

    6830db18f21ad639a72da4595f8e4b510c9592a4079f65e0894dbd73e4e685e6

  • SHA512

    89a753e3eb617d87acd5f4cf7eb35a77086af2e407cdec03cf251d8bc873dc6bd7c783415cdcd3f48ed8058edacf18cf4995240cd5e500ec227441b5949ca501

  • SSDEEP

    12288:mGLJQT4UN3K3vpR/fanYtBzSfhCFOSe0A9OdVsmPuLRHg+HVL:WT4UlK/fanYbaoFOf5QPuNHBN

Score
3/10
discovery

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\4396e23a4407ea0098936b62a66b1288_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\4396e23a4407ea0098936b62a66b1288_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:5004

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads