d776df24fe32953160842f8807439306c480a1322976e7293a9f28abaa40b342

Analysis

max time kernel
140s
max time network
121s
platform
windows7_x64
resource
win7-20240220-en
resource tags

arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
submitted
17/04/2024, 18:24

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe
Size

123KB
MD5

f6649e7dc29835fe54963e23e222ab17
SHA1

2dc8fcca65d09cf48c63adceca0ff7b3c11c0d12
SHA256

d776df24fe32953160842f8807439306c480a1322976e7293a9f28abaa40b342
SHA512

8a7b814aa3f3e878fd543dce465b12070b9ba05adc930627ea533c244ecb8b2818a17138c10612901e47f23551b82379cee4b66377a4c262743f9240a4562c91
SSDEEP

1536:cEVeX5e9rRNxMCld2BMi4VpDnkvY9FOSgyCLm7zr5bFye7ZOpV95DFAqpmR7TMoh:cEVoqRNvmMi4VoK56szO+stmq0ko

Score

1^/10

Malware Config

Signatures

Modifies registry class 13 IoCs

description	ioc	Process
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.key\	f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.dog\ = "dogfile"	f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.key\ = "regfile"	f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\dogfile	f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\dogfile\DefaultIcon	f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\dogfile\DefaultIcon\ = "shell32.dll,-13"	f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\.key	f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\.dog	f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\dogfile\ = "SoftDog file"	f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\dogfile\shell\open\command	f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\dogfile\shell	f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\dogfile\shell\open	f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\dogfile\shell\open\command\ = "C:\\Users\\Admin\\AppData\\Local\\Temp\\f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe %1"	f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\f6649e7dc29835fe54963e23e222ab17_JaffaCakes118.exe"
1⤵
- Modifies registry class
PID:2300

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2300-0-0x0000000000400000-0x000000000042D000-memory.dmp

Filesize
180KB

Download
memory/2300-1-0x0000000001B90000-0x0000000001BBB000-memory.dmp

Filesize
172KB

Download
memory/2300-2-0x0000000001B90000-0x0000000001BBB000-memory.dmp

Filesize
172KB

Download
memory/2300-3-0x0000000000400000-0x000000000042D000-memory.dmp

Filesize
180KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads