0475be057fc989f38baddba46fd491ba22cb4932f1336eb9aa5c387464a08223

Analysis

max time kernel
150s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
09/05/2024, 16:22

Target

2ad34446ff89387336314aaebe5bca32_JaffaCakes118.exe
Size

52KB
MD5

2ad34446ff89387336314aaebe5bca32
SHA1

3719b83082ab38cb2056c303c1f8dc3b962bdec6
SHA256

0475be057fc989f38baddba46fd491ba22cb4932f1336eb9aa5c387464a08223
SHA512

1439a5f479ceb401cc1e489b1cf03142e0b5b3f914e2e048a04fddb3e8c3714f68a26ca71f6baaa59ee76013d42d64431170336ea9c5db61db25cb39a59b1f2f
SSDEEP

768:/C1rgn0XwtSaJHhMITqxTxTNCWJVBd5Sfs:/CK0XMaOqxTxT0WVdH

Score

1^/10

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
4316	2ad34446ff89387336314aaebe5bca32_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\2ad34446ff89387336314aaebe5bca32_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\2ad34446ff89387336314aaebe5bca32_JaffaCakes118.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:4316

C:\Users\Admin\AppData\Local\Temp\CloneF_4.exe

Filesize
52KB

MD5
02ddb90f29edbb4ed645533bc42de5a6

SHA1
235312116da6fb5dc703e851933ee296aeeb72b3

SHA256
7810f5be3a64a63f6c8e5c7255c26e4be5be6bda75f673a1ea087686550a2afc

SHA512
ad38daa4d8a66796d9a064ad09bcef75e665e1db7a91f3cdcb135ede33bc84737a2efe3083cc157ad8462334d5248a9acda7acacee7e8345bfae418618cb7578

Download Submit