e8f7ca5519f6cde3f1a44fdd19a16386ed0006c2413292e9f55b2032d43addc1 | Triage

Analysis

max time kernel
55s
max time network
49s
platform
windows10-2004_x64
resource
win10v2004-20240419-en
resource tags

arch:x64arch:x86image:win10v2004-20240419-enlocale:en-usos:windows10-2004-x64system
submitted
28/04/2024, 18:34

Sharing

Report Analysis Logs

General

Target

05d33c4a91dcc3d8ea1382818c87f05e_JaffaCakes118.exe
Size

769KB
MD5

05d33c4a91dcc3d8ea1382818c87f05e
SHA1

bc598a50aba17eac4b2f00940c5604ab64523705
SHA256

e8f7ca5519f6cde3f1a44fdd19a16386ed0006c2413292e9f55b2032d43addc1
SHA512

cbbea6f7d6270cb6225a1d5126b444b65584255e9783385a9d4347757edaf4c5fd8447d84a90d6a78dbf48ff114354a055222714e41eb6925e07826624ba4f83
SSDEEP

12288:kIoIpGR2yoawbR+kWeOSynb7RELA5kOieQcYVbhOSzr8lsvDkT15oaks1wdr6n:kI6QmwbIkTPynfRt52eCbwUrCs7kTzUa

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Users\Admin\AppData\Local\Temp\05d33c4a91dcc3d8ea1382818c87f05e_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\05d33c4a91dcc3d8ea1382818c87f05e_JaffaCakes118.exe"
1⤵
PID:5020

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads