Overview

overview

3

Static

static

1

03bcf2d894...18.exe

windows7-x64

1

03bcf2d894...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    55s
  • max time network
    53s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240419-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240419-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27-04-2024 22:10

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    03bcf2d8948855fa71c9acfc0f37ecbb_JaffaCakes118.exe

  • Size

    858KB

  • MD5

    03bcf2d8948855fa71c9acfc0f37ecbb

  • SHA1

    79ee7a746f08159b4b323bbbf0f3ed75c538687c

  • SHA256

    11cff105070327e9b6d5151c9b81569d5158ceed353f4e3dcacd735256ea8ef8

  • SHA512

    f8ca051f0503b7647b05310ea01952b851859e2fa827f6415f030e363d2228035d6fb7652195cbbad537ba76500f2ebba8b5bb12fae9991cb08530f023dfa1da

  • SSDEEP

    24576:k90u4BZdbKHnCbhh4CtO9Mz6QcLHMqzZViFL6OPQ0m8NTi:kGu4BTWilh1tMzQyLGFL6OPQ07W

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\03bcf2d8948855fa71c9acfc0f37ecbb_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\03bcf2d8948855fa71c9acfc0f37ecbb_JaffaCakes118.exe"
    1⤵
      PID:1620
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1620 -s 460
        2⤵
        • Program crash
        PID:3528
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 424 -p 1620 -ip 1620
      1⤵
        PID:3248

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/1620-0-0x0000000000400000-0x0000000000419000-memory.dmp
        Filesize

        100KB

        Download
      • memory/1620-2-0x0000000000400000-0x0000000000419000-memory.dmp
        Filesize

        100KB

        Download
      • memory/1620-5-0x0000000000400000-0x0000000000419000-memory.dmp
        Filesize

        100KB

        Download