Overview

overview

6

Static

static

1

694c1f67b5...18.exe

windows7-x64

6

694c1f67b5...18.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    119s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240419-en
  • resource tags

    arch:x64arch:x86image:win7-20240419-enlocale:en-usos:windows7-x64system
  • submitted
    23-05-2024 01:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    694c1f67b5aace6b3d5eeb1f67e25f0b_JaffaCakes118.exe

  • Size

    287KB

  • MD5

    694c1f67b5aace6b3d5eeb1f67e25f0b

  • SHA1

    85762750c5c596f7dbfa285e8c57b5ec82627ce9

  • SHA256

    21c86ad51f094aedd59b7e5ea6ce269e6ba4186126cc858a30ec3bc27daf5395

  • SHA512

    f71aef46425195477bab88e9b735079eccc271dbfd9bbb9bfc0d3288818b7d7ebbac0d8ebc471500c1cb46c0b61ab9fd84d3ecd474ede621300a70fec8f606c9

  • SSDEEP

    3072:NmwXIzKLkxJURl7f4CsnxrhhHbY7SQZ3/cySdUjhP/p66EUDjTK:34Kk/c5fqxrsSQZNIy/M6NjTK

Score
6/10
discovery

Malware Config

Signatures

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

    discovery
  • Drops file in Windows directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\694c1f67b5aace6b3d5eeb1f67e25f0b_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\694c1f67b5aace6b3d5eeb1f67e25f0b_JaffaCakes118.exe"
    1⤵
    • Drops file in Windows directory
    PID:992

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/992-1-0x0000000001320000-0x0000000001360000-memory.dmp

    Filesize

    256KB

    Download

  • memory/992-3-0x00000000000F0000-0x000000000011F000-memory.dmp

    Filesize

    188KB

    Download