Analysis

  • max time kernel
    120s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240508-en
  • resource tags

    arch:x64arch:x86image:win7-20240508-enlocale:en-usos:windows7-x64system
  • submitted
    14-06-2024 01:56

General

  • Target

    a7a55339961d3c2be4b83b293ac54f5e_JaffaCakes118.exe

  • Size

    299KB

  • MD5

    a7a55339961d3c2be4b83b293ac54f5e

  • SHA1

    6f47b72b511d2f42c664f02c0a70d4b3b2578dbf

  • SHA256

    86bff1d14800ebe1a8791df6d81306b835843aa97f919cc477f2b3125129c4bb

  • SHA512

    7616a4d56cd54f2ea09214bf694bbad78463d2b649381fea779614891c74528933f5b535a0c3fb8d8d24640dd2e96c378707f9e728ee2067a23db31878bb713b

  • SSDEEP

    6144:BOcYDd0OSaxLM5feKGoVvCyL+JUHicB1tfazS:YcYGg4nGoVKfQiGazS

Score
6/10

Malware Config

Signatures

  • Checks installed software on the system 1 TTPs

    Looks up Uninstall key entries in the registry to enumerate software on the system.

  • Drops file in Windows directory 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\a7a55339961d3c2be4b83b293ac54f5e_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\a7a55339961d3c2be4b83b293ac54f5e_JaffaCakes118.exe"
    1⤵
    • Drops file in Windows directory
    PID:1932

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/1932-0-0x0000000000020000-0x0000000000021000-memory.dmp

    Filesize

    4KB

  • memory/1932-2-0x0000000000130000-0x0000000000131000-memory.dmp

    Filesize

    4KB

  • memory/1932-1-0x0000000000030000-0x0000000000031000-memory.dmp

    Filesize

    4KB

  • memory/1932-3-0x0000000000140000-0x0000000000141000-memory.dmp

    Filesize

    4KB

  • memory/1932-5-0x0000000000160000-0x0000000000193000-memory.dmp

    Filesize

    204KB

  • memory/1932-4-0x0000000000150000-0x0000000000151000-memory.dmp

    Filesize

    4KB

  • memory/1932-6-0x0000000000160000-0x0000000000193000-memory.dmp

    Filesize

    204KB

  • memory/1932-7-0x0000000000290000-0x00000000002BF000-memory.dmp

    Filesize

    188KB

  • memory/1932-11-0x0000000000160000-0x0000000000193000-memory.dmp

    Filesize

    204KB

  • memory/1932-19-0x0000000000160000-0x0000000000193000-memory.dmp

    Filesize

    204KB