Overview

overview

10

Static

static

10

JaffaCakes...81.exe

windows7-x64

6

JaffaCakes...81.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    150s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20250217-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20250217-enlocale:en-usos:windows10-2004-x64system
  • submitted
    01/03/2025, 21:47

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    JaffaCakes118_3bca656a16819b4096e63e1199076e81.exe

  • Size

    163KB

  • MD5

    3bca656a16819b4096e63e1199076e81

  • SHA1

    f6143c3257c61431b12d704ffb9cb2c9e4f9ff36

  • SHA256

    2190c1163859e206c476c3570e278c5db8aca1cc53be5879c8770c7bc18389b3

  • SHA512

    c1b67e712801fe9580168c69185c827992ca9e30241fb3438224578b9dd1d0fe5a94f8b43a6818ff291feaa5c41e1d8fa1e7af882f5c4b7e0cad98e7add08e20

  • SSDEEP

    3072:bqc4+RRbe+n/3Mnw+GvRZrD8XUDTZDmTevKQpo6f9zQWY:bj4+R5t/3vHR9D8XUvITA7plf90WY

Score
6/10
discoverypersistence

Malware Config

Signatures

  • Adds Run key to start application 2 TTPs 1 IoCs
    persistence
  • System Location Discovery: System Language Discovery 1 TTPs 1 IoCs

    Attempt gather information about the system language of a victim in order to infer the geographical location of that host.

    discovery

Processes

  • C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_3bca656a16819b4096e63e1199076e81.exe
    "C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_3bca656a16819b4096e63e1199076e81.exe"
    1⤵
    • Adds Run key to start application
    • System Location Discovery: System Language Discovery
    PID:1372

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads