Overview

overview

10

Static

static

10

JaffaCakes...d87fe7

windows7-x64

3

JaffaCakes...d87fe7

windows10-2004-x64

3

Resubmissions

29-12-2024 09:01

241229-kzddcaxqfj 10

29-12-2024 09:01

241229-kyvw1axqel 10

Analysis

  • max time kernel
    361s
  • max time network
    362s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    29-12-2024 09:01

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    JaffaCakes118_d12261e8c587b7d96aedc0215c6c35ad0035230067bbbb5b6ef6e6aa9ed87fe7

  • Size

    296KB

  • MD5

    46650249d5816c662e8639e3e9f6014f

  • SHA1

    6378e5a8bd3bfc02d144ea2caf723eaaad6424ca

  • SHA256

    d12261e8c587b7d96aedc0215c6c35ad0035230067bbbb5b6ef6e6aa9ed87fe7

  • SHA512

    47126d8d76fb1b0d774cc1e76ca85bfc70b065c1a706b73f1aeff456bd3363b5b7c57496af0b29089d68f25de0c65658954587339c4a3c41cd6aed812a4a714f

  • SSDEEP

    6144:nnfC1FRZQP6GcUoSSwu5To9EPjgwB/3iQl7p0zhZU+6:ncF2cUoSSwu5To9EcwB/3iQlNEhg

Score
3/10
discovery

Malware Config

Signatures

  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_d12261e8c587b7d96aedc0215c6c35ad0035230067bbbb5b6ef6e6aa9ed87fe7
    1⤵
      PID:2516
    • C:\Windows\SysWOW64\DllHost.exe
      C:\Windows\SysWOW64\DllHost.exe /Processid:{06622D85-6856-4460-8DE1-A81921B41C4B}
      1⤵
      • System Location Discovery: System Language Discovery
      PID:2664

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads