71137687230ae1907a4bbed3fb4a0fa3d27dde60a37ac0347a61e94921cd225f

Analysis

max time kernel
2s
max time network
46s
platform
windows10-2004_x64
resource
win10v2004-20240226-en
resource tags

arch:x64arch:x86image:win10v2004-20240226-enlocale:en-usos:windows10-2004-x64system
submitted
08/04/2024, 14:12

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

e7a4f9e822af31f6b76e99311223366f_JaffaCakes118.exe
Size

4.5MB
MD5

e7a4f9e822af31f6b76e99311223366f
SHA1

edbdefaba71e94ffeb4c467296b6dcf6f3d7f4f7
SHA256

71137687230ae1907a4bbed3fb4a0fa3d27dde60a37ac0347a61e94921cd225f
SHA512

f53bc96237f9145eb3ba7923ec3e9e1bbf2c831ef7d6d73611399456836b7fcf9f257119bb4340d1e07cc31d5d6d9c2a5e0af21b69c42bcd5d9cab2c6ed76631
SSDEEP

49152:EQFRHrmQG+yrY+Fr/rcrvrDRHrmQG+yr/QG+yrBrDRHrmQG+yr/QG+AQG+w:EcKUKTnKT9z

Score

7^/10

Malware Config

Signatures

Executes dropped EXE 1 IoCs

pid	Process
2648	inr.exe

Suspicious use of WriteProcessMemory 3 IoCs

description	pid	Process	procid_target
PID 2108 wrote to memory of 2648	2108	e7a4f9e822af31f6b76e99311223366f_JaffaCakes118.exe	87
PID 2108 wrote to memory of 2648	2108	e7a4f9e822af31f6b76e99311223366f_JaffaCakes118.exe	87
PID 2108 wrote to memory of 2648	2108	e7a4f9e822af31f6b76e99311223366f_JaffaCakes118.exe	87

C:\Users\Admin\AppData\Local\Temp\e7a4f9e822af31f6b76e99311223366f_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\e7a4f9e822af31f6b76e99311223366f_JaffaCakes118.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:2108
- C:\Users\Admin\AppData\Local\Temp\inr.exe
  C:\Users\Admin\AppData\Local\Temp\inr.exe -run C:\Users\Admin\AppData\Local\Temp\e7a4f9e822af31f6b76e99311223366f_JaffaCakes118.exe
  2⤵
  - Executes dropped EXE
  PID:2648

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Users\Admin\AppData\Local\Temp\inr.exe

Filesize
1.6MB

MD5
7991a46c76675ada0f862f2b893195da

SHA1
7834b38a89c8b0497f6c98ced181c78d12ad0950

SHA256
e830db9cc289959d3894ebdd2c3bd82225aa209b13faa3b3c3a40d88e2a9cadc

SHA512
4c46b7f76925df4efad4e3f5d76ae4b4ab772ee84dbde638bbae0513cfbe0f00b656f0b3517238ffebb1c2a0d42ed5d458228090bd4017de8a417614ad56eb8b

Download Submit
C:\Users\Admin\AppData\Local\Temp\inr.exe

Filesize
1.2MB

MD5
7ac27717d169f425149f8d89dc8b2681

SHA1
02d2476ba1a9eff6ea04400ae1f2c9521d33c9e1

SHA256
810a0371f61a1834e25a3ea5da32dc9331132522c55071d4e74ea95757137abb

SHA512
e8840563d76338d87b49a2933bee39057fe7cc09af0966a5a7dd3474e9aeaccdffb89d24cb2a4b61aeeac223efb3fa0dba6cd1daa8fc89e7471b76a8f03bec9d

Download Submit
memory/2108-20-0x00000000025E0000-0x00000000025E1000-memory.dmp

Filesize
4KB

Download
memory/2108-24-0x00000000025C0000-0x00000000025C1000-memory.dmp

Filesize
4KB

Download
memory/2108-4-0x0000000000810000-0x0000000000811000-memory.dmp

Filesize
4KB

Download
memory/2108-7-0x0000000000830000-0x0000000000831000-memory.dmp

Filesize
4KB

Download
memory/2108-6-0x00000000006F0000-0x00000000006F1000-memory.dmp

Filesize
4KB

Download
memory/2108-5-0x0000000000850000-0x0000000000851000-memory.dmp

Filesize
4KB

Download
memory/2108-8-0x0000000002370000-0x0000000002371000-memory.dmp

Filesize
4KB

Download
memory/2108-9-0x0000000002D70000-0x0000000002D71000-memory.dmp

Filesize
4KB

Download
memory/2108-10-0x0000000002350000-0x0000000002351000-memory.dmp

Filesize
4KB

Download
memory/2108-11-0x0000000002D60000-0x0000000002D62000-memory.dmp

Filesize
8KB

Download
memory/2108-12-0x0000000002410000-0x0000000002411000-memory.dmp

Filesize
4KB

Download
memory/2108-13-0x00000000023D0000-0x00000000023D1000-memory.dmp

Filesize
4KB

Download
memory/2108-14-0x00000000023C0000-0x00000000023C1000-memory.dmp

Filesize
4KB

Download
memory/2108-15-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download
memory/2108-16-0x00000000023B0000-0x00000000023B1000-memory.dmp

Filesize
4KB

Download
memory/2108-17-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/2108-18-0x0000000002420000-0x0000000002421000-memory.dmp

Filesize
4KB

Download
memory/2108-19-0x0000000002430000-0x0000000002431000-memory.dmp

Filesize
4KB

Download
memory/2108-0-0x0000000000400000-0x0000000000536000-memory.dmp

Filesize
1.2MB

Download
memory/2108-21-0x0000000002590000-0x0000000002591000-memory.dmp

Filesize
4KB

Download
memory/2108-3-0x0000000000820000-0x0000000000821000-memory.dmp

Filesize
4KB

Download
memory/2108-25-0x0000000002570000-0x0000000002571000-memory.dmp

Filesize
4KB

Download
memory/2108-22-0x0000000002580000-0x0000000002581000-memory.dmp

Filesize
4KB

Download
memory/2108-26-0x00000000025A0000-0x00000000025A1000-memory.dmp

Filesize
4KB

Download
memory/2108-27-0x00000000025D0000-0x00000000025D1000-memory.dmp

Filesize
4KB

Download
memory/2108-28-0x0000000002D50000-0x0000000002D56000-memory.dmp

Filesize
24KB

Download
memory/2108-29-0x0000000002E20000-0x0000000002F20000-memory.dmp

Filesize
1024KB

Download
memory/2108-30-0x0000000002E20000-0x0000000002F20000-memory.dmp

Filesize
1024KB

Download
memory/2108-31-0x0000000002E20000-0x0000000002F20000-memory.dmp

Filesize
1024KB

Download
memory/2108-32-0x0000000002E20000-0x0000000002F20000-memory.dmp

Filesize
1024KB

Download
memory/2108-34-0x0000000002E20000-0x0000000002F20000-memory.dmp

Filesize
1024KB

Download
memory/2108-33-0x0000000002E20000-0x0000000002F20000-memory.dmp

Filesize
1024KB

Download
memory/2108-2-0x0000000002360000-0x0000000002361000-memory.dmp

Filesize
4KB

Download
memory/2108-38-0x0000000002E20000-0x0000000002F20000-memory.dmp

Filesize
1024KB

Download
memory/2108-1-0x0000000002300000-0x0000000002350000-memory.dmp

Filesize
320KB

Download
memory/2108-40-0x0000000002E20000-0x0000000002F20000-memory.dmp

Filesize
1024KB

Download
memory/2108-42-0x0000000002E20000-0x0000000002F20000-memory.dmp

Filesize
1024KB

Download
memory/2108-43-0x0000000002300000-0x0000000002350000-memory.dmp

Filesize
320KB

Download
memory/2108-41-0x0000000000400000-0x0000000000536000-memory.dmp

Filesize
1.2MB

Download
memory/2108-39-0x0000000002E20000-0x0000000002F20000-memory.dmp

Filesize
1024KB

Download
memory/2108-44-0x0000000002E20000-0x0000000002F20000-memory.dmp

Filesize
1024KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads