Overview

overview

6

Static

static

3

ffc7d6b0f2...18.exe

windows7-x64

6

ffc7d6b0f2...18.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    149s
  • max time network
    152s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240412-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240412-enlocale:en-usos:windows10-2004-x64system
  • submitted
    21-04-2024 17:21

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    ffc7d6b0f2ee0dcbc0a3c4d829399308_JaffaCakes118.exe

  • Size

    736KB

  • MD5

    ffc7d6b0f2ee0dcbc0a3c4d829399308

  • SHA1

    f170fdcb38862a20388809a4c0d42cc3a7a07cbd

  • SHA256

    fe1e7bf156029927a5a2f987238e4b99501237a2c430039a6c826e2841f796a9

  • SHA512

    7d1e3b060c9d503aadb328ef62fcb0a55aed4d390396922beb5a4688c1a58abfd99df14851d7b96242a27081a23197900bbaf90af4c25cf838e03e9c2e61e27d

  • SSDEEP

    12288:YlXfIlg5LHrPMiJ40QBUahhecZqLWGPr4v62nrnOhT:IXgwHrPMiJCBTqcZEv2nr

Score
6/10
persistence

Malware Config

Signatures

  • Adds Run key to start application 2 TTPs 1 IoCs
    persistence

Processes

  • C:\Users\Admin\AppData\Local\Temp\ffc7d6b0f2ee0dcbc0a3c4d829399308_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\ffc7d6b0f2ee0dcbc0a3c4d829399308_JaffaCakes118.exe"
    1⤵
    • Adds Run key to start application
    PID:4000

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4000-0-0x0000000000600000-0x0000000000601000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4000-1-0x0000000000400000-0x00000000004C3000-memory.dmp

    Filesize

    780KB

    Download

  • memory/4000-2-0x0000000000400000-0x00000000004C3000-memory.dmp

    Filesize

    780KB

    Download

  • memory/4000-3-0x0000000000600000-0x0000000000601000-memory.dmp

    Filesize

    4KB

    Download

  • memory/4000-8-0x0000000000400000-0x00000000004C3000-memory.dmp

    Filesize

    780KB

    Download