Analysis
-
max time kernel
237s -
max time network
274s -
platform
windows10-2004_x64 -
resource
win10v2004-20240412-en -
resource tags
-
submitted
19/04/2024, 10:30
General
-
Target
fa1acf716bd2974d2785c73c8f5aa636_JaffaCakes118.exe
-
Size
259KB
-
MD5
fa1acf716bd2974d2785c73c8f5aa636
-
SHA1
a5615fac9d230568a0ee759474fe12dd4fa03548
-
SHA256
6e1b45ff86b9b96208776a3801336cd031a8b378761eb3dd37664d492906fcb1
-
SHA512
43b1b0ce1452a59b2decd322f331dbd235125173fd4a9e1379182149ada7ba86121b83505dba5dc24acb579943146aef6bf7923e44937699352ae53dc90920ba
-
SSDEEP
3072:qnnAQVG/LytaKItS/fiLKS+f5Aq7i0hW7BC4bd4CQJCoJQm2TukdDXkxe86R:uOTeHI8HiL7+f5X34pfacTBdD6L6R
Score
3/10
Malware Config
Signatures
-
Program crash 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\fa1acf716bd2974d2785c73c8f5aa636_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\fa1acf716bd2974d2785c73c8f5aa636_JaffaCakes118.exe"1⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 3320 -s 4802⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 3320 -s 4922⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 428 -p 3320 -ip 33201⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 440 -p 3320 -ip 33201⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
168KB