77cdf7b61ced6fa3c8fca473d34e74e42ce8783c7ae9eb9c6c2ba6e9947df8ae

Analysis

max time kernel
151s
max time network
157s
platform
windows10-2004_x64
resource
win10v2004-20240412-en
resource tags

arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
submitted
19/04/2024, 10:25

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
Size

6.9MB
MD5

fa195d4990efa733c121d1e9cf28bc59
SHA1

141eda9dcf030254f70bbabddcb2dfd15ea2996e
SHA256

77cdf7b61ced6fa3c8fca473d34e74e42ce8783c7ae9eb9c6c2ba6e9947df8ae
SHA512

fe252c545bf135e6a8ec4b40d53896271cd5237bdc7658577d874fb0cc53cbc55db3718fd64e567d252058165bed4322d26af8899aa5b50c375f638b185ad53c
SSDEEP

768:tEkYHAFgBB2TgGJu/Cjet/OxJ+oFEZE9W:tbaAFqKu/CjP+oFEW9W

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 63 IoCs

description	ioc	Process
File created	C:\Windows\Intelx386\Winamp 3 (full version).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Dont Download.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Hentai Shizuka clit.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\WinRar v6.11 (with crack).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\GameCube Emulator.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Visual Studio (full).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Shinchan screen saver.scr	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Hentai.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Update Photoshop 8.0 to Photoshop 9.5 (It´s Work!).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\DivX 7.2 freeware.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Pack 25 Juegos GameCube.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Resident Evil for GameCube.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Visual C.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Simpsons pack guiones (Temporada 2004).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Dont Touch.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Matrix Wallpapers.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\No lo Descargues.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Winamp 5.0 (full version).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Download Accelerator Plus (DAP) (full version with serial).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\German extreme violation.mpg.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Pedofilia pack 37 pics.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Solo para Maricas.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\BsPlayer v3.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Juegos JAVA para NOKIA.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\VMIntel386.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Pack Tonos y Logos para Nokia.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Silent Hill.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\RM2GBA.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Fuck my fat ass.avi.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Sexo con una menor.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\RealOne Player (Full version).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\a pelo.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\3D Studio R8 (It's Work!!).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Visual Basic 6.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\FlashGet Max acceleration (Experimental).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Update Photoshop 7.0 to Photoshop 9.16 (It´s Work!).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\WinZip 9.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Terminator 3 Wallpapers.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Hentai Evangelion Poker.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\WinAmp skings and plugins.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Mazinkaiser pack fondos de escritorio.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\mugen (full).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\humor.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Winamp 3.5 (full version).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Hacha Profesional Edition.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Capitulos ineditos de DragonBall Z jamas emitidos.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Lolita Pack 20 Pics.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Puta come mierda.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Pack 50 Juegos PS2.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\ContaWin 2000 (full version).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\VirtualDub 2.1.4.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\MSN messenger 6.3.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\3D Movie Maker.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\GBAEmu.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Chenoa en cueros.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Pack sex very hot nude young girl porn erotic private pussy rape clitoris suck chicas fotos culos tetas coños mamadas corridas sister hermana amigas friends lesbianas mujeres desnudas putas guarras hentai.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\WinAce 3.85 (with Serial).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\WinRar 4 (with crack).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Mazinkaiser comics pack.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\PSEmu.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\WAV2MP3.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Nero 7.5.1.0 (cracked!).exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
File created	C:\Windows\Intelx386\Follada brutal coño roto.exe	fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe

Program crash 1 IoCs

pid	pid_target	Process	procid_target
3880	4252	WerFault.exe	79

C:\Users\Admin\AppData\Local\Temp\fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\fa195d4990efa733c121d1e9cf28bc59_JaffaCakes118.exe"
1⤵
- Drops file in Windows directory
PID:4252
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4252 -s 296
  2⤵
  - Program crash
  PID:3880

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 432 -p 4252 -ip 4252
1⤵
PID:3740

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

C:\Windows\Intelx386\Update Photoshop 8.0 to Photoshop 9.5 (It´s Work!).exe

Filesize
8.7MB

MD5
426c20643f6c40f5c1da5bb011e90f66

SHA1
12369d9f0fdd3b840f2678bd66fc5fe0a7deb1b9

SHA256
7ca3ce7e0d8fa2017c817a031c34ff12bec5b6e24d979c92d8b92d358ba8c30b

SHA512
683e7b4a791d2aefc304678d202a005c345fafc632fa9b9343e4766775ac8c27def6deebda8314cb2ba866799716a4c23c7a4dc96e1171805477706506a99ca4

Download Submit

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads