Analysis
-
max time kernel
93s -
max time network
150s -
platform
windows10-2004_x64 -
resource
win10v2004-20241007-en -
resource tags
-
submitted
07-12-2024 06:52
General
-
Target
d1270358e925aaf3405b4b8f400dcc62_JaffaCakes118.exe
-
Size
78KB
-
MD5
d1270358e925aaf3405b4b8f400dcc62
-
SHA1
140b2175459fa097cdf7dda48c38f45177da94f5
-
SHA256
b5f08db7056702be8add9423eb81d7432c74517e64ac3aba64eed2697e195ef1
-
SHA512
ab457b7929309f2e795df52a0bbcbd7a79a9bb3f417c819906a99be708e989339d9f50b678874e8bd4398bc937c2ec81f4976a60a3cb43ad319812e34b9d9996
-
SSDEEP
1536:LpreQ6dV5pOo5QnoLkHzQiREXmcW5G3wHawJwrJx+JElqJbP:96Q6z5pMogHzQimX48Lw6rH+S8bP
Score
3/10
Malware Config
Signatures
-
Program crash 1 IoCs
-
System Location Discovery: System Language Discovery 1 TTPs 1 IoCs
Attempt gather information about the system language of a victim in order to infer the geographical location of that host.
Processes
-
C:\Users\Admin\AppData\Local\Temp\d1270358e925aaf3405b4b8f400dcc62_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\d1270358e925aaf3405b4b8f400dcc62_JaffaCakes118.exe"1⤵
- System Location Discovery: System Language Discovery
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 1136 -s 3242⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 1136 -ip 11361⤵
Network
MITRE ATT&CK Enterprise v15
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
20KB
-
Filesize
164KB