Overview

overview

3

Static

static

3

f60e2b7171...18.exe

windows7-x64

1

f60e2b7171...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    92s
  • max time network
    115s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240412-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
  • submitted
    17/04/2024, 15:09

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    f60e2b71715b00abc13976c67a3e2a01_JaffaCakes118.exe

  • Size

    86KB

  • MD5

    f60e2b71715b00abc13976c67a3e2a01

  • SHA1

    91e16582e9868ebbef6317e99d11b1494c2b51a7

  • SHA256

    231d4c1be9d7949c5821e70881c7ed833167378fbbd7f8a70f5d8904d05d8195

  • SHA512

    83cf07ca31f4f21a120f0ba48caaaf98c95b294fe9af08552e8c4fc2604936746d246f80c02b6832b036a92e3fe744d1ab2e1f49ae0a5ea88cbd240df0bf83d0

  • SSDEEP

    1536:Y/pRrgaErlEHSYq9+8U6i1ESV/cdoRGs0k6ufRK4NvxjFb9vKdOlGv6ErMMkjmu/:6VErESYqQf6i6WcTvkDKapPO0GCEgMkY

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: RenamesItself 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\f60e2b71715b00abc13976c67a3e2a01_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\f60e2b71715b00abc13976c67a3e2a01_JaffaCakes118.exe"
    1⤵
    • Suspicious behavior: RenamesItself
    PID:2252

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2252-1-0x0000000000400000-0x000000000041C000-memory.dmp

          Filesize

          112KB

          Download

        • memory/2252-2-0x00000000006E0000-0x00000000006F4000-memory.dmp

          Filesize

          80KB

          Download

        • memory/2252-0-0x00000000006E0000-0x00000000006F4000-memory.dmp

          Filesize

          80KB

          Download

        • memory/2252-3-0x0000000000400000-0x000000000041C000-memory.dmp

          Filesize

          112KB

          Download