Overview

overview

3

Static

static

3

549621722e...18.exe

windows7-x64

3

549621722e...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20241010-en
  • resource tags

    arch:x64arch:x86image:win7-20241010-enlocale:en-usos:windows7-x64system
  • submitted
    18-10-2024 00:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    549621722e55b32b572b5fd5e201af22_JaffaCakes118.exe

  • Size

    292KB

  • MD5

    549621722e55b32b572b5fd5e201af22

  • SHA1

    eabb26538b00aa98e549af22082f26aa4794157f

  • SHA256

    74064ff3d767d6c5553ada8db7f949507be7f1bb235695925eee2729bb80d07f

  • SHA512

    69de7c7d04c22bc0ad5192c17c7477038ffb25567a4fffd6e5acdc678fe2e50c35b853ab6a1eb8fe7ee010cbfcf9e84c70c83f8e9662e4f0eeecb950790b21b2

  • SSDEEP

    6144:jIuFd/XYhFaz6x8z2P/iK4GvY/naZcj4HSEnc61D+Az746ZCQd2I:PFdwhFYqqKevIcjqSEc61DRx4I

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\549621722e55b32b572b5fd5e201af22_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\549621722e55b32b572b5fd5e201af22_JaffaCakes118.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    • Suspicious use of SetWindowsHookEx
    PID:2884

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads