Analysis
-
max time kernel
144s -
max time network
125s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system -
submitted
13-06-2024 08:43
Behavioral task
behavioral1
Sample
a4af8b44c24bc0910cdb7a3209b66147_JaffaCakes118.exe
Resource
win7-20240508-en
3 signatures
150 seconds
Behavioral task
behavioral2
Sample
a4af8b44c24bc0910cdb7a3209b66147_JaffaCakes118.exe
Resource
win10v2004-20240226-en
2 signatures
150 seconds
General
-
Target
a4af8b44c24bc0910cdb7a3209b66147_JaffaCakes118.exe
-
Size
1.1MB
-
MD5
a4af8b44c24bc0910cdb7a3209b66147
-
SHA1
a176f368da579738397c4c6b7db4c8fd60b22631
-
SHA256
4f90a735fdc2dc57c8a5730ae89e1e1347af0be0ddab3e710d93bbdf3d50b0b2
-
SHA512
72717dbf362a54a4543abbbf38f84ed66d40897e02231930f730bcfd9813a61c8fff03626e194162bf56c82a3e0a95795794ace0a3350a8ebdd6150a08dbba02
-
SSDEEP
24576:xX/ZCxVEf8lVjvrQQks+IijZTEhxU+oDemQZvpEYkb:5xCqY40i1ghboD/m2p
Score
7/10
Malware Config
Signatures
-
Processes:
resource yara_rule behavioral1/memory/328-0-0x0000000000400000-0x000000000071B000-memory.dmp upx behavioral1/memory/328-2-0x0000000000400000-0x000000000071B000-memory.dmp upx behavioral1/memory/328-4-0x0000000000400000-0x000000000071B000-memory.dmp upx behavioral1/memory/328-5-0x0000000000400000-0x000000000071B000-memory.dmp upx behavioral1/memory/328-7-0x0000000000400000-0x000000000071B000-memory.dmp upx -
Suspicious behavior: EnumeratesProcesses 1 IoCs
Processes:
a4af8b44c24bc0910cdb7a3209b66147_JaffaCakes118.exepid process 328 a4af8b44c24bc0910cdb7a3209b66147_JaffaCakes118.exe -
Suspicious behavior: GetForegroundWindowSpam 1 IoCs
Processes:
a4af8b44c24bc0910cdb7a3209b66147_JaffaCakes118.exepid process 328 a4af8b44c24bc0910cdb7a3209b66147_JaffaCakes118.exe