Overview

overview

6

Static

static

3

179954adb2...18.exe

windows7-x64

6

179954adb2...18.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    150s
  • max time network
    155s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    29/03/2024, 03:48

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    179954adb2e7113d62942a4aa4d0c238_JaffaCakes118.exe

  • Size

    44KB

  • MD5

    179954adb2e7113d62942a4aa4d0c238

  • SHA1

    421a8807b4a3622d7f33f34d9cda48d1e9e568f9

  • SHA256

    bd055fe2ba79b1e8c72caa9dc6bf1fbb6b3b2d07d2ef9273aa250d1af9def8b8

  • SHA512

    137632faff6439dbe86a96b920a0fc14d9488f3fb35c532af655d6c663cadf0d5be7c79c27645d6723452f773efd006551e8691996fd92279b289aaaac36c3c7

  • SSDEEP

    768:NiOQauOECLIK8u4qc+5aIjK4LrP+K5fE67y7N8FdUV0J:Nip8JB5aOLL+K5E6U87J

Score
6/10
persistence

Malware Config

Signatures

  • Adds Run key to start application 2 TTPs 1 IoCs
    persistence
  • Drops file in Windows directory 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\179954adb2e7113d62942a4aa4d0c238_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\179954adb2e7113d62942a4aa4d0c238_JaffaCakes118.exe"
    1⤵
    • Adds Run key to start application
    • Drops file in Windows directory
    PID:860

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/860-3-0x0000000000400000-0x0000000000412000-memory.dmp

          Filesize

          72KB

          Download

        • memory/860-4-0x0000000000400000-0x0000000000412000-memory.dmp

          Filesize

          72KB

          Download

        • memory/860-5-0x0000000000400000-0x0000000000412000-memory.dmp

          Filesize

          72KB

          Download

        • memory/860-7-0x0000000000400000-0x0000000000412000-memory.dmp

          Filesize

          72KB

          Download

        • memory/860-8-0x0000000000400000-0x0000000000412000-memory.dmp

          Filesize

          72KB

          Download

        • memory/860-10-0x0000000000400000-0x0000000000412000-memory.dmp

          Filesize

          72KB

          Download

        • memory/860-11-0x0000000000400000-0x0000000000412000-memory.dmp

          Filesize

          72KB

          Download

        • memory/860-12-0x0000000000400000-0x0000000000412000-memory.dmp

          Filesize

          72KB

          Download

        • memory/860-13-0x0000000000400000-0x0000000000412000-memory.dmp

          Filesize

          72KB

          Download

        • memory/860-15-0x0000000000400000-0x0000000000412000-memory.dmp

          Filesize

          72KB

          Download

        • memory/860-16-0x0000000000400000-0x0000000000412000-memory.dmp

          Filesize

          72KB

          Download