Overview

overview

7

Static

static

7

14b41b4c28...18.exe

windows7-x64

7

14b41b4c28...18.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240319-en
  • resource tags

    arch:x64arch:x86image:win7-20240319-enlocale:en-usos:windows7-x64system
  • submitted
    29-03-2024 01:09

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    14b41b4c28fdaa06fe7988fd78975711_JaffaCakes118.exe

  • Size

    20KB

  • MD5

    14b41b4c28fdaa06fe7988fd78975711

  • SHA1

    03cf6497fa81a5acec7c6213e1753251df8c4e12

  • SHA256

    6c544ef0218d90122ee3f88d868d3d85820d8c89b62f57c708b66e5c352e7dac

  • SHA512

    c6d8d63fba2a4740adbe71949e7c5596f5bc9e0d1a72e93e5de3066b8544309af1b15982b1d4e67c73c476cd76cb7c033a424b9b7fe336e43d29a479b67b3b51

  • SSDEEP

    384:fo9q5pG7Vbjz0QhuvmtSh/6kTMklKBcdDtI7JliSwlmerfVjuujQA+CJwn:GqDSbP0w+mFko/B8I7JUSiVfVyLA+Km

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • Suspicious behavior: RenamesItself 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\14b41b4c28fdaa06fe7988fd78975711_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\14b41b4c28fdaa06fe7988fd78975711_JaffaCakes118.exe"
    1⤵
    • Suspicious behavior: RenamesItself
    PID:2204

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2204-0-0x0000000000400000-0x000000000041A000-memory.dmp

    Filesize

    104KB

    Download

  • memory/2204-2-0x0000000000400000-0x000000000041A000-memory.dmp

    Filesize

    104KB

    Download