2042795829dcc297a970546c04ed9a04e162fc62d6d680f18c4e40f1ebe929bc

Analysis

max time kernel
135s
max time network
105s
platform
windows10-2004_x64
resource
win10v2004-20240426-en
resource tags

arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
submitted
14-05-2024 04:04

Target

3dd2e3c502367a64f0114bf9c3aa2988_JaffaCakes118.exe
Size

258KB
MD5

3dd2e3c502367a64f0114bf9c3aa2988
SHA1

25c02be0f8d7c5d6a26dc3c48dc4d2dfa4e8f863
SHA256

2042795829dcc297a970546c04ed9a04e162fc62d6d680f18c4e40f1ebe929bc
SHA512

850ae06adcaf9c26ee9ec701a50e448ac442237541b880a0e379168db0c364eeb722a40812fefd5b8997f8e657a5121b6a24a5633ae6cac9637a176c8e265ab8
SSDEEP

6144:tN/nGUIgxBttfkHOI7UyOY1lTbGHD0gTpwmdFGHE3cPe:tN/Gzgx1Muy1lbows+acPe

Score

4^/10

Drops file in Windows directory 1 IoCs

description	ioc	Process
File created	C:\Windows\Tasks\PhotoTouch.job	3dd2e3c502367a64f0114bf9c3aa2988_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\3dd2e3c502367a64f0114bf9c3aa2988_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\3dd2e3c502367a64f0114bf9c3aa2988_JaffaCakes118.exe"
1⤵
- Drops file in Windows directory
PID:1168

memory/1168-2-0x0000000001180000-0x0000000001181000-memory.dmp

Filesize
4KB

Download
memory/1168-1-0x0000000000C00000-0x0000000000C01000-memory.dmp

Filesize
4KB

Download
memory/1168-0-0x00000000009F0000-0x00000000009F1000-memory.dmp

Filesize
4KB

Download
memory/1168-3-0x0000000001AB0000-0x0000000001AD9000-memory.dmp

Filesize
164KB

Download
memory/1168-4-0x0000000001AA0000-0x0000000001AA1000-memory.dmp

Filesize
4KB

Download
memory/1168-9-0x0000000001AB0000-0x0000000001AD9000-memory.dmp

Filesize
164KB

Download
memory/1168-6-0x0000000004740000-0x000000000476F000-memory.dmp

Filesize
188KB

Download
memory/1168-18-0x0000000001AB0000-0x0000000001AD9000-memory.dmp

Filesize
164KB

Download
memory/1168-14-0x0000000003BC0000-0x0000000003BE7000-memory.dmp

Filesize
156KB

Download
memory/1168-22-0x0000000001AB0000-0x0000000001AD9000-memory.dmp

Filesize
164KB

Download