Analysis Overview
SHA256
220597db5d08142fbe0beb488d4af9cba1bf494a2d3d01dc248cd0f1dc783c15
Threat Level: No (potentially) malicious behavior was detected
The file a6a9ed70dcf4e714c7139919bd5acaf7_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
MITRE ATT&CK
Analysis: static1
Detonation Overview
Reported
2024-06-13 21:32
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-13 21:32
Reported
2024-06-13 21:35
Platform
win7-20240611-en
Max time kernel
118s
Max time network
124s
Command Line
Signatures
Processes
C:\Users\Admin\AppData\Local\Temp\a6a9ed70dcf4e714c7139919bd5acaf7_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\a6a9ed70dcf4e714c7139919bd5acaf7_JaffaCakes118.exe"
Network
Files
memory/2852-0-0x00000000001D0000-0x00000000001D1000-memory.dmp
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-13 21:32
Reported
2024-06-13 21:35
Platform
win10v2004-20240611-en
Max time kernel
95s
Max time network
97s
Command Line
Signatures
Processes
C:\Users\Admin\AppData\Local\Temp\a6a9ed70dcf4e714c7139919bd5acaf7_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\a6a9ed70dcf4e714c7139919bd5acaf7_JaffaCakes118.exe"
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | g.bing.com | udp |
| US | 204.79.197.237:443 | g.bing.com | tcp |
| NL | 23.62.61.72:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 8.8.8.8.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 0.159.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.210.23.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 72.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 198.187.3.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.23.12.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 57.15.31.184.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 88.251.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 25.140.123.92.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 13.227.111.52.in-addr.arpa | udp |
Files
memory/5044-0-0x0000000000700000-0x0000000000701000-memory.dmp