Analysis

  • max time kernel
    119s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    16-05-2024 09:24

General

  • Target

    4a65331a1464d13642557126404b2652_JaffaCakes118.exe

  • Size

    185KB

  • MD5

    4a65331a1464d13642557126404b2652

  • SHA1

    b109356ac5134d21a16d82d47110005a54558ffa

  • SHA256

    fc1a46be0ee4a1e698164edc54f0e90459d3f6f82347a2d12a96a8a026d4375c

  • SHA512

    2cb793253350a7e7910d76edda4b569807cc4230433b98d42bef87e1359f15cb3595d686dc0fb358294436d2ef8ecc682260cc61d706e2632f77e57dc378b64f

  • SSDEEP

    3072:ZDa9TKx2yqR8wz3HQYVwBPqP+hXLYAsnWk0knpUoPs3Ir3e9psnYxm5l2gTk7yMX:JqT7yqmwz3wYOBxh7YAsj0ke8s3IUpsi

Score
6/10

Malware Config

Signatures

Processes

  • C:\Users\Admin\AppData\Local\Temp\4a65331a1464d13642557126404b2652_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\4a65331a1464d13642557126404b2652_JaffaCakes118.exe"
    1⤵
    • Adds Run key to start application
    PID:2424

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2424-0-0x0000000000400000-0x000000000046B000-memory.dmp

    Filesize

    428KB

  • memory/2424-1-0x0000000000400000-0x000000000046B000-memory.dmp

    Filesize

    428KB

  • memory/2424-6-0x0000000000400000-0x000000000046B000-memory.dmp

    Filesize

    428KB

  • memory/2424-9-0x0000000000400000-0x000000000046B000-memory.dmp

    Filesize

    428KB

  • memory/2424-8-0x0000000000465000-0x0000000000466000-memory.dmp

    Filesize

    4KB

  • memory/2424-4-0x0000000000400000-0x000000000046B000-memory.dmp

    Filesize

    428KB

  • memory/2424-5-0x0000000000230000-0x000000000029B000-memory.dmp

    Filesize

    428KB

  • memory/2424-3-0x0000000000400000-0x000000000046B000-memory.dmp

    Filesize

    428KB

  • memory/2424-2-0x0000000000400000-0x000000000046B000-memory.dmp

    Filesize

    428KB

  • memory/2424-10-0x0000000000400000-0x000000000046B000-memory.dmp

    Filesize

    428KB