Analysis
-
max time kernel
142s -
max time network
149s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system -
submitted
23-10-2024 15:02
Static task
static1
Behavioral task
behavioral1
Sample
6f8987e28fed878d08858a943e7c6e7c_JaffaCakes118.exe
Resource
win7-20240903-en
Behavioral task
behavioral2
Sample
6f8987e28fed878d08858a943e7c6e7c_JaffaCakes118.exe
Resource
win10v2004-20241007-en
General
-
Target
6f8987e28fed878d08858a943e7c6e7c_JaffaCakes118.exe
-
Size
177KB
-
MD5
6f8987e28fed878d08858a943e7c6e7c
-
SHA1
1fb1d7408e99195e23a71f49ce31bc90041dd4ee
-
SHA256
03e3cc01a263edb9aefb411ebf2efb74d2130651400dc3baaa5e344ff1ec47ad
-
SHA512
e42427a6603379938ba40cc7d0b1608458a9d3f22af6811b291b3e6e5fb2cc28cd991b54f106cb8a5f661adb69817d55f54c5b1f557a7c8cc6f74ba7906f6f36
-
SSDEEP
3072:l4k3pHqF6aRVtp0MgGaEwASYJrUb3M60P+x0HmbEVLLSLfmo0h7yDb7fCXcBkbCs:ppg6Abp0MgGaErlJSBEVaLOJZo/NuK7e
Malware Config
Signatures
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes:
6f8987e28fed878d08858a943e7c6e7c_JaffaCakes118.exedescription ioc Process Key opened \REGISTRY\MACHINE\SYSTEM\ControlSet001\Control\NLS\Language 6f8987e28fed878d08858a943e7c6e7c_JaffaCakes118.exe