a1ad6dd27197a36e32037d20b8edccfe09856195d87094209070d4303c733135

Analysis

max time kernel
92s
max time network
94s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
28/04/2024, 23:03

Target

06438794e08a6df61869acd2e7b5d6ec_JaffaCakes118.exe
Size

58KB
MD5

06438794e08a6df61869acd2e7b5d6ec
SHA1

1fe7b1ab51dac79a1de35b7aa0928372eba8973f
SHA256

a1ad6dd27197a36e32037d20b8edccfe09856195d87094209070d4303c733135
SHA512

c71e45946a3463d0e1e810a4df87d438016c1d7a9bfa2784e5d22d15090d09b451b37ef99c4033ef66bb0f47208f2a00080591d96816957432e589680cc94bc9
SSDEEP

1536:o0fKyI9JPRLJ3Jh991P6pX+QCXfUfCwhdGRNCzQ7e0c63Tc:S9JZLJ3Jh9ypXDCXfUfCwhdmN4Q7eP6I

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
1512	3412	WerFault.exe	81

C:\Users\Admin\AppData\Local\Temp\06438794e08a6df61869acd2e7b5d6ec_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\06438794e08a6df61869acd2e7b5d6ec_JaffaCakes118.exe"
1⤵
PID:3412
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3412 -s 432
  2⤵
  - Program crash
  PID:1512

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 416 -p 3412 -ip 3412
1⤵
PID:4392

memory/3412-0-0x0000000001000000-0x0000000001011000-memory.dmp

Filesize
68KB

Download
memory/3412-1-0x0000000001000000-0x0000000001011000-memory.dmp

Filesize
68KB

Download