Overview

overview

10

Static

static

3

JaffaCakes...e6.exe

windows7-x64

10

JaffaCakes...e6.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    94s
  • max time network
    148s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20241007-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20241007-enlocale:en-usos:windows10-2004-x64system
  • submitted
    14-01-2025 20:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    JaffaCakes118_44d76a8755e23030c5594366efc323e6.exe

  • Size

    161KB

  • MD5

    44d76a8755e23030c5594366efc323e6

  • SHA1

    ef591b1959c1387d4c08957f3b832a6cace66938

  • SHA256

    4e78b2fae539e3e9ed7fc2b755be1b590c3dc2891ee7011a44f8fbf23e6ec2d1

  • SHA512

    29cc520d2da1a179ed84fcbbd82477903957d39e181422916a8dff77bdb35cb201112b54c28058c98192bc3621ad6a0e8f0c2e2418151c6d1a1e4562a25e03c7

  • SSDEEP

    3072:kojx9B/pFtWUL2bICrLBT48/KQ3gr81sRUTYa0BkZg9EzpAdSuPY32nVutG1lZNv:koV9B/pFtWi2bICrLBs8/KQK/ZzkWezm

Score
3/10
discovery

Malware Config

Signatures

  • Program crash 1 IoCs
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_44d76a8755e23030c5594366efc323e6.exe
    "C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_44d76a8755e23030c5594366efc323e6.exe"
    1⤵
    • System Location Discovery: System Language Discovery
    PID:4552
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -u -p 4552 -s 264
      2⤵
      • Program crash
      PID:3688
  • C:\Windows\SysWOW64\WerFault.exe
    C:\Windows\SysWOW64\WerFault.exe -pss -s 436 -p 4552 -ip 4552
    1⤵
      PID:3652

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads