142c32e0ed180d3d125c5255997612940e70f54419609d56bfde034a8ff91350

Analysis

max time kernel
66s
max time network
54s
platform
windows10-2004_x64
resource
win10v2004-20240419-en
resource tags

arch:x64arch:x86image:win10v2004-20240419-enlocale:en-usos:windows10-2004-x64system
submitted
27/04/2024, 04:02

Target

0260e2f4614bff139b3686bbe4db8ab5_JaffaCakes118.exe
Size

221KB
MD5

0260e2f4614bff139b3686bbe4db8ab5
SHA1

cbda8ace57e05a4d644cb93b860563b152a95f8d
SHA256

142c32e0ed180d3d125c5255997612940e70f54419609d56bfde034a8ff91350
SHA512

b79ad11f81bbc6e18b5d8ed1fe637b92d508d4fcb8f277139f16ee23e1f4964b8d97cc31985d948c9dec0636d37a1f063e7d5b036a749936afd184660ce3a861
SSDEEP

6144:DvgMcU87VLU1/xhYh1JXbJ9LZ3D/upTSIi:mBLihc1JLJ9LR6pTSN

Score

4^/10

Drops file in Windows directory 1 IoCs

description	ioc	Process
File created	C:\Windows\Tasks\ExtraWalk.job	0260e2f4614bff139b3686bbe4db8ab5_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\0260e2f4614bff139b3686bbe4db8ab5_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\0260e2f4614bff139b3686bbe4db8ab5_JaffaCakes118.exe"
1⤵
- Drops file in Windows directory
PID:1012

memory/1012-1-0x0000000000720000-0x0000000000721000-memory.dmp

Filesize
4KB

Download
memory/1012-0-0x0000000000710000-0x0000000000711000-memory.dmp

Filesize
4KB

Download
memory/1012-2-0x0000000000730000-0x0000000000731000-memory.dmp

Filesize
4KB

Download
memory/1012-3-0x0000000000750000-0x0000000000770000-memory.dmp

Filesize
128KB

Download
memory/1012-4-0x0000000000740000-0x0000000000741000-memory.dmp

Filesize
4KB

Download
memory/1012-9-0x0000000000750000-0x0000000000770000-memory.dmp

Filesize
128KB

Download
memory/1012-5-0x0000000000E90000-0x0000000000EBF000-memory.dmp

Filesize
188KB

Download
memory/1012-17-0x0000000000750000-0x0000000000770000-memory.dmp

Filesize
128KB

Download