Analysis Overview
SHA256
37493368afad9698003b7e5ce4445ecdd57759ba9340a5c2f7f18017aadcd930
Threat Level: No (potentially) malicious behavior was detected
The file a3b509cbacdb19295981559129d616cf_JaffaCakes118 was found to be: No (potentially) malicious behavior was detected.
Malicious Activity Summary
MITRE ATT&CK
Analysis: static1
Detonation Overview
Reported
2024-06-13 03:42
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-13 03:42
Reported
2024-06-13 03:44
Platform
win7-20240611-en
Max time kernel
120s
Max time network
124s
Command Line
Signatures
Processes
C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\a3b509cbacdb19295981559129d616cf_JaffaCakes118.dll,#1
Network
Files
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-13 03:42
Reported
2024-06-13 03:44
Platform
win10v2004-20240611-en
Max time kernel
91s
Max time network
94s
Command Line
Signatures
Processes
C:\Windows\system32\rundll32.exe
rundll32.exe C:\Users\Admin\AppData\Local\Temp\a3b509cbacdb19295981559129d616cf_JaffaCakes118.dll,#1
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | 138.32.126.40.in-addr.arpa | udp |
| NL | 23.62.61.194:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 88.156.103.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 144.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 194.61.62.23.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 50.23.12.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 15.164.165.52.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.107.17.2.in-addr.arpa | udp |