5c08351bd55aa79e2222f09866ab375d836e492a120e59f7fd23c2d78b605650

Analysis

max time kernel
148s
max time network
150s
platform
windows7_x64
resource
win7-20240220-en
resource tags

arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
submitted
21-05-2024 15:08

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

63bb92ed2506576d2659ad4ba895aba5_JaffaCakes118.exe
Size

1.6MB
MD5

63bb92ed2506576d2659ad4ba895aba5
SHA1

f613d2a7725923014a47c7e3aa11f0e3855c09d7
SHA256

5c08351bd55aa79e2222f09866ab375d836e492a120e59f7fd23c2d78b605650
SHA512

07c2028d284de28e878b1f4965721a577cbc3509bceb3260ecb6172b22a995f4e50020216f5c608dc60936e906666ef7df41d1d57ee0ce5bede0509b4e5a228e
SSDEEP

49152:tryntn6bqYjHE+/yIYVnOnVA02qQHouZguVoZD2bzCBw:tryntn6bqYjHMouZguVoZibuBw

Score

1^/10

Malware Config

Signatures

Suspicious use of AdjustPrivilegeToken 2 IoCs

description	pid	Process
Token: 33	3012	63bb92ed2506576d2659ad4ba895aba5_JaffaCakes118.exe
Token: SeIncBasePriorityPrivilege	3012	63bb92ed2506576d2659ad4ba895aba5_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\63bb92ed2506576d2659ad4ba895aba5_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\63bb92ed2506576d2659ad4ba895aba5_JaffaCakes118.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
PID:3012

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3012-0-0x0000000001120000-0x00000000012EB000-memory.dmp

Filesize
1.8MB

Download
memory/3012-1-0x0000000001120000-0x00000000012EB000-memory.dmp

Filesize
1.8MB

Download
memory/3012-17-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-23-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-35-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-57-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-64-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-55-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-54-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-53-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-52-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-51-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-50-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-48-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-47-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-46-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-45-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-32-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-28-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-56-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-49-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-22-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-21-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-20-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-19-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-18-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-16-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-15-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-14-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-13-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-12-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-11-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-8-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-7-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-6-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-5-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-4-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-24-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-2-0x0000000001120000-0x00000000012EB000-memory.dmp

Filesize
1.8MB

Download
memory/3012-9-0x0000000000930000-0x0000000000AAD000-memory.dmp

Filesize
1.5MB

Download
memory/3012-10-0x0000000001120000-0x00000000012EB000-memory.dmp

Filesize
1.8MB

Download
memory/3012-3-0x000000000115B000-0x00000000012EB000-memory.dmp

Filesize
1.6MB

Download
memory/3012-267-0x000000000115B000-0x00000000012EB000-memory.dmp

Filesize
1.6MB

Download
memory/3012-268-0x0000000001120000-0x00000000012EB000-memory.dmp

Filesize
1.8MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads