Overview

overview

3

Static

static

3

6ad9657fe6...18.exe

windows7-x64

1

6ad9657fe6...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    134s
  • max time network
    106s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240426-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240426-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/05/2024, 11:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6ad9657fe674ee27c738ad1cc402e6f8_JaffaCakes118.exe

  • Size

    2.5MB

  • MD5

    6ad9657fe674ee27c738ad1cc402e6f8

  • SHA1

    2d2b5a5ca23ac0a7072afc8e54b522633e1645e0

  • SHA256

    55552ee5b7af4a39c4efd5c6a9a0e09de757404480583942d3e910655bb0c5a3

  • SHA512

    bb48ca559c424aae11b8ffcfefa4f82dc5054cbc6c48799910cf47f82aab705119bdc933f17411b3e768d0e56b2565747601378eafb7d255a8b11a4541d56628

  • SSDEEP

    49152:sIAXKPRh6IsN2IKbUMqurZqsCaoVVd7CJaPGvdtdwCJeE1x/kS:s+Rh67NZKbUMqIHovF4vdtdwke

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 4 IoCs
  • Suspicious use of SetWindowsHookEx 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6ad9657fe674ee27c738ad1cc402e6f8_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\6ad9657fe674ee27c738ad1cc402e6f8_JaffaCakes118.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:3152

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\ProgramData\Icons\cache.info
    Filesize

    68B

    MD5

    00a4eb8caba1160e50cbb997afc2b07f

    SHA1

    59cc1c53c7f80eecc1c0e506b10cac75ca892ad5

    SHA256

    b0e4b2a39ecbcc52f0097a16f65425f58a119b89e95ff7fa6266fc4035dc9263

    SHA512

    db1fcdcf5281799baf8b7bd24ea6c4314e0315fd4a541c1ead9c1d50731beb3db1ac1d7351feece3f5609b74faae09f4d0a8b24e36313f98f17334e3f4e086d8

    Download Submit