Overview

overview

3

Static

static

3

5245046132...18.exe

windows7-x64

3

5245046132...18.exe

windows10-2004-x64

3

$PLUGINSDIR/Math.dll

windows7-x64

3

$PLUGINSDIR/Math.dll

windows10-2004-x64

3

$PLUGINSDI...dl.dll

windows7-x64

3

$PLUGINSDI...dl.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

$R1.dll

windows7-x64

3

$R1.dll

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240729-en
  • resource tags

    arch:x64arch:x86image:win7-20240729-enlocale:en-usos:windows7-x64system
  • submitted
    17/10/2024, 13:48

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    5245046132bb52c8cfa68806d40ea381_JaffaCakes118.exe

  • Size

    318KB

  • MD5

    5245046132bb52c8cfa68806d40ea381

  • SHA1

    1c48e18438ab7b691faeb06c808847255b94dcc1

  • SHA256

    717abcf1ed9f76455b4803644397d9720df9e9d86de6afd76b2c02e10f0c88bf

  • SHA512

    dcfbded15af26bbc7fca149352914dd065ca27f485bd5a3deffd08a9fcdccb35bea04f7a3c80fa5417913d43cf2ef7df05a31e8fa556e446d1870b12a88c0db3

  • SSDEEP

    6144:zsO+SaGGu6nEIAb7qDuw2AliDcvyPVa3j+f3tPvNpuOJwd/Hy9HbOWT:JZNGpSb7qKwD8B5Zfbu18Hbl

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\5245046132bb52c8cfa68806d40ea381_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\5245046132bb52c8cfa68806d40ea381_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:2076

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads