dbf107ccc9e9f14c0d420fad3d5e8f90e2b0b80ab25a2695282f6209653c4ab8

Analysis

max time kernel
138s
max time network
124s
platform
windows10-2004_x64
resource
win10v2004-20241007-en
resource tags

arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
submitted
18-10-2024 10:42

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

56fc58cea8bd27e00fcf0ec7286eb25b_JaffaCakes118.exe
Size

693KB
MD5

56fc58cea8bd27e00fcf0ec7286eb25b
SHA1

8eeefff96e854ff47748bd665a30b5d271df0483
SHA256

dbf107ccc9e9f14c0d420fad3d5e8f90e2b0b80ab25a2695282f6209653c4ab8
SHA512

b41249e690c8a3aeb6438d5a80b7b6e22fedfbc90738a7c1db08389558c532893cd1e247c8349f0ddf2c32b79687e0b8253d7019e9ce5d72d2c66520d88d326c
SSDEEP

12288:neEEfxxCYYkQ4g1frYAaHZiwDJUZZnWS23WnQDomIQF3EpI4Z4X10GVWA:nz0xCYQaHLuZZfzQk2wIY4ZYA

Score

3^/10

discovery

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

discovery

System Language Discovery

T1614.001

description	ioc	Process
Key opened	\REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language	56fc58cea8bd27e00fcf0ec7286eb25b_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\56fc58cea8bd27e00fcf0ec7286eb25b_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\56fc58cea8bd27e00fcf0ec7286eb25b_JaffaCakes118.exe"
1⤵
- System Location Discovery: System Language Discovery
PID:216

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

System Location Discovery

T1614

System Language Discovery

T1614.001

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads