Overview

overview

7

Static

static

3

354c94f8fb...18.exe

windows7-x64

7

354c94f8fb...18.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    148s
  • max time network
    155s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11-05-2024 15:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    354c94f8fb3b20ee22be20a59f680fe1_JaffaCakes118.exe

  • Size

    293KB

  • MD5

    354c94f8fb3b20ee22be20a59f680fe1

  • SHA1

    b502e271673528f1ed58bd31b0d98e878aad9713

  • SHA256

    049e552805cf840ec23661e45f45bced8dc070ec9a3be4778502a666590db02c

  • SHA512

    cd91232c6d28484f5545058cbdae34105386981b3f91f187a24f7fac95cc3c74ad9397c27caf8be0ccd47fedb5a0b38c4c81bbbd4ac89732d34055e232031cf3

  • SSDEEP

    6144:uQEn9aA+NXagZei5DtsUAIkhZIK5jEgVtdwFBnzsQP6A1J1EqG0:uQW9alagZp9ieNjnIgOE

Score
7/10

Malware Config

Signatures

  • Loads dropped DLL 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\354c94f8fb3b20ee22be20a59f680fe1_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\354c94f8fb3b20ee22be20a59f680fe1_JaffaCakes118.exe"
    1⤵
    • Loads dropped DLL
    • Suspicious behavior: EnumeratesProcesses
    PID:688

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\Tsu1094A71C.dll
    Filesize

    267KB

    MD5

    4caa3c536a356ebea65fcad0ebf2b602

    SHA1

    cecffbe181191154b280c9d5326d16aff2762b8e

    SHA256

    6d36225a8ed55a7f35d404e5fcf833126bd01f2e3fefbbf8548993c318ef02cf

    SHA512

    01d95f583124661f883183183616735f30d5211c07c3c743b0dae65f2221b83be9bb33049a1b111f24f13fc160756eecf37bd1fb83ce8525eb3038a0d5aa2aef

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\{21E01472-17AA-DB45-39AE-5F88FA033684}\_Setup.dll
    Filesize

    206KB

    MD5

    0c1b9e5f1a57dc793b7abd7e2d7324a7

    SHA1

    f1a7ea6f99b09c817cfa26d27522a89fd109fa25

    SHA256

    020d32aef741e6eff4c9672308bfbc0af9e38c75154a9d9d03f5091bcafb55de

    SHA512

    d05e5f488d473feb63dea32efdb2680d6b17173ffd9848c43e39a041ff4c4b9068b14e11cbad6e132e2e4d95dbea24ebc75d90cd4246016217b4b6b0e059f93e

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\{21E01472-17AA-DB45-39AE-5F88FA033684}\_Setupx.dll
    Filesize

    42KB

    MD5

    66e0d3cb3825b658880be576875795bc

    SHA1

    740982ce3b3e4bd08c1cbd5fc8cfeb982f1d4e05

    SHA256

    27b7921fbbd360bf77db65a50b2cd9a600e6baaaf77fd60eee74476d9fc6c7e0

    SHA512

    23873b2052f66d3b5961cfd5ca26d4d3f507cbd0317116e6b773d23defe47c164e1040fb56392f17cd2644528c64dfbfdeccc46e1965a650786414c8f8f74c7b

    Download Submit