Analysis
-
max time kernel
141s -
max time network
152s -
platform
windows10-2004_x64 -
resource
win10v2004-20240226-en -
resource tags
-
submitted
16/05/2024, 15:33
General
-
Target
4bca3c7134baeb789b3e2fc2d2f7a418_JaffaCakes118.jad
-
Size
71KB
-
MD5
4bca3c7134baeb789b3e2fc2d2f7a418
-
SHA1
dae5c09c9c6d457307d9fae70f4d8897130a334d
-
SHA256
40789bd9f10ebe457dde74eeacd80b2e735114621c72ea3bb413aeb4252630a0
-
SHA512
501b5d550290538f2ecc760cf99d0505b7171c784002d2667c5333fa53a2cee4caa77c8c9d5b0de7e605810d81c09f021c907b35308e60f5f503463c11b234b0
-
SSDEEP
1536:exY2pxBWG1vAxhEopssksN1+YtjVfvsIYsej5M:cVhYVW6tpUjseFM
Score
3/10
Malware Config
Signatures
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
-
Modifies registry class 2 IoCs
-
Suspicious use of SetWindowsHookEx 1 IoCs
Processes
-
C:\Windows\system32\cmd.execmd /c C:\Users\Admin\AppData\Local\Temp\4bca3c7134baeb789b3e2fc2d2f7a418_JaffaCakes118.jad1⤵
- Modifies registry class
-
C:\Windows\system32\OpenWith.exeC:\Windows\system32\OpenWith.exe -Embedding1⤵
- Modifies registry class
- Suspicious use of SetWindowsHookEx
-
C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe" --type=utility --utility-sub-type=asset_store.mojom.AssetStoreService --lang=en-US --service-sandbox-type=asset_store_service --no-appcompat-clear --mojo-platform-channel-handle=4140 --field-trial-handle=3192,i,2785050981002401924,4037047756083432660,262144 --variations-seed-version /prefetch:81⤵