Overview

overview

3

Static

static

3

f140ea58fc...18.exe

windows7-x64

1

f140ea58fc...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    122s
  • max time network
    126s
  • platform
    windows7_x64
  • resource
    win7-20240221-en
  • resource tags

    arch:x64arch:x86image:win7-20240221-enlocale:en-usos:windows7-x64system
  • submitted
    15/04/2024, 14:15

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    f140ea58fc0da4ef9c22f9ed5c83c855_JaffaCakes118.exe

  • Size

    262KB

  • MD5

    f140ea58fc0da4ef9c22f9ed5c83c855

  • SHA1

    64afe68b49e7a0815fc6c15002fefc460cc9af49

  • SHA256

    83080414b7823c3a4fd8d42f1c5ab041b1f64b19fb8875b3b3e97eb7ff5a118b

  • SHA512

    3ca71ad0eb47ea22223b4f7d684352ee1e73b3f79c1b9c9a2f370a0330533b8ee76e2c69d378aa43468f16559d2813acec65aa1e432e6c0945b48e14718430b5

  • SSDEEP

    6144:mDKW1Lgbdl0TBBvjc/1P48XFxlRPJtvJCfWim:Ah1Lk70TnvjcdjvJC3m

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\f140ea58fc0da4ef9c22f9ed5c83c855_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\f140ea58fc0da4ef9c22f9ed5c83c855_JaffaCakes118.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2896

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2896-1-0x0000000074460000-0x0000000074B4E000-memory.dmp

    Filesize

    6.9MB

    Download

  • memory/2896-0-0x0000000002110000-0x0000000002156000-memory.dmp

    Filesize

    280KB

    Download

  • memory/2896-2-0x00000000020D0000-0x0000000002110000-memory.dmp

    Filesize

    256KB

    Download

  • memory/2896-3-0x00000000020D0000-0x0000000002110000-memory.dmp

    Filesize

    256KB

    Download

  • memory/2896-4-0x0000000002290000-0x00000000022D4000-memory.dmp

    Filesize

    272KB

    Download

  • memory/2896-5-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-6-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-8-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-10-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-12-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-14-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-16-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-18-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-20-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-22-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-24-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-26-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-28-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-30-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-32-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-34-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-36-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-38-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-40-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-44-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-48-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-52-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-54-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-56-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-60-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-64-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-68-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-66-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-62-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-58-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-50-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-46-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-42-0x0000000002290000-0x00000000022CE000-memory.dmp

    Filesize

    248KB

    Download

  • memory/2896-1009-0x00000000020D0000-0x0000000002110000-memory.dmp

    Filesize

    256KB

    Download

  • memory/2896-1010-0x0000000074460000-0x0000000074B4E000-memory.dmp

    Filesize

    6.9MB

    Download