Analysis
-
max time kernel
93s -
max time network
123s -
platform
windows10-2004_x64 -
resource
win10v2004-20240426-en -
resource tags
-
submitted
04/06/2024, 01:05
General
-
Target
933aa1f46da72594022aa082acbf6998_JaffaCakes118.exe
-
Size
83KB
-
MD5
933aa1f46da72594022aa082acbf6998
-
SHA1
63ee884353fc83d4970fdca889adfaad869b4b04
-
SHA256
1da7e1852b6387910395e81d3b8003de8f8b5002003f70b143094893af5159e5
-
SHA512
4b24151e586e2f84d3c777faa8556c26189c20eae4421fea6b1d22249fcf945cc796db6b3317c413db0c21c92df5d1d0bcfc0bcb46fed6b0a8d84c98c7b98843
-
SSDEEP
768:QdNHufAOofyp27S7zvMJ9LOrt22Kdj2Rz29CS3hxEfwZx/Kp6nEpLDOPVpx3dnGm:QGnvAoKB0zjS3D2wZnEqVTsejtAI
Score
3/10
Malware Config
Signatures
-
Program crash 3 IoCs
-
Suspicious use of SetWindowsHookEx 2 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\933aa1f46da72594022aa082acbf6998_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\933aa1f46da72594022aa082acbf6998_JaffaCakes118.exe"1⤵
- Suspicious use of SetWindowsHookEx
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2644 -s 4522⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2644 -s 4562⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 2644 -s 4562⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 2644 -ip 26441⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 432 -p 2644 -ip 26441⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 540 -p 2644 -ip 26441⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
44KB
-
Filesize
44KB