Analysis Overview
SHA256
b008073ad14e59ad137d2b04788600cd639ebb4cc81f29e31df556f68f772847
Threat Level: Likely benign
The file a47e3217b8d3ae3b4615a1ab17cd6616_JaffaCakes118 was found to be: Likely benign.
Malicious Activity Summary
Command and Scripting Interpreter: JavaScript
MITRE ATT&CK
Enterprise Matrix V15
Analysis: static1
Detonation Overview
Reported
2024-06-13 07:48
Signatures
Analysis: behavioral1
Detonation Overview
Submitted
2024-06-13 07:48
Reported
2024-06-13 07:51
Platform
win7-20240419-en
Max time kernel
122s
Max time network
123s
Command Line
Signatures
Command and Scripting Interpreter: JavaScript
Processes
C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\a47e3217b8d3ae3b4615a1ab17cd6616_JaffaCakes118.js
Network
Files
Analysis: behavioral2
Detonation Overview
Submitted
2024-06-13 07:48
Reported
2024-06-13 07:51
Platform
win10v2004-20240611-en
Max time kernel
90s
Max time network
94s
Command Line
Signatures
Command and Scripting Interpreter: JavaScript
Processes
C:\Windows\system32\wscript.exe
wscript.exe C:\Users\Admin\AppData\Local\Temp\a47e3217b8d3ae3b4615a1ab17cd6616_JaffaCakes118.js
Network
| Country | Destination | Domain | Proto |
| US | 8.8.8.8:53 | g.bing.com | udp |
| US | 131.253.33.237:443 | g.bing.com | tcp |
| BE | 2.17.107.106:443 | www.bing.com | tcp |
| US | 8.8.8.8:53 | 172.210.232.199.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 237.33.253.131.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 22.160.190.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 26.35.223.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 106.107.17.2.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 103.169.127.40.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 56.126.166.20.in-addr.arpa | udp |
| US | 8.8.8.8:53 | 203.107.17.2.in-addr.arpa | udp |