Overview

overview

3

Static

static

3

111f90bad4...18.exe

windows7-x64

1

111f90bad4...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240220-en
  • resource tags

    arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
  • submitted
    04/05/2024, 01:33

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    111f90bad4718feb98e85c664738ec27_JaffaCakes118.exe

  • Size

    1.9MB

  • MD5

    111f90bad4718feb98e85c664738ec27

  • SHA1

    02c48dd1e6b145048d28d3046f8b0432cf7ac9d8

  • SHA256

    21e3afba6e5013b8d62436272f63f4b936b0d522094e62851f238e8010d1cb84

  • SHA512

    118914edfb729c97d6324a1d92ba83cd96e81e46064a9d75621cfd8d3ebe09ff329b0c3d5a3e280bfbf321202f0e4ea8f4f1fd26016770b5263a1a9f1b9c4d77

  • SSDEEP

    49152:zkQTAeCY5Vj/UzLawygzCNQdS3fU5VXTA8PbEN+4Xh2d6DDDRN6I:zaetj8zL33zCG0KVU8zSgCh

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\111f90bad4718feb98e85c664738ec27_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\111f90bad4718feb98e85c664738ec27_JaffaCakes118.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:1728

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1728-0-0x000000007448E000-0x000000007448F000-memory.dmp

    Filesize

    4KB

    Download

  • memory/1728-1-0x0000000005100000-0x00000000052E0000-memory.dmp

    Filesize

    1.9MB

    Download

  • memory/1728-2-0x0000000074480000-0x0000000074B6E000-memory.dmp

    Filesize

    6.9MB

    Download

  • memory/1728-5-0x0000000074480000-0x0000000074B6E000-memory.dmp

    Filesize

    6.9MB

    Download

  • memory/1728-4-0x0000000074480000-0x0000000074B6E000-memory.dmp

    Filesize

    6.9MB

    Download

  • memory/1728-3-0x0000000004F20000-0x00000000050FC000-memory.dmp

    Filesize

    1.9MB

    Download

  • memory/1728-11-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-13-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-23-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-6-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-7-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-35-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-50-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-55-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-9-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-25-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-33-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-37-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-57-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-53-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-51-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-47-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-45-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-43-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-41-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-39-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-31-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-29-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-27-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-21-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-19-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-17-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-15-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-59-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-69-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-67-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-65-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-63-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-61-0x0000000004F20000-0x00000000050F8000-memory.dmp

    Filesize

    1.8MB

    Download

  • memory/1728-244-0x0000000074480000-0x0000000074B6E000-memory.dmp

    Filesize

    6.9MB

    Download

  • memory/1728-245-0x0000000074480000-0x0000000074B6E000-memory.dmp

    Filesize

    6.9MB

    Download