2d41b2990cf78f7fee53caeb107b019e58006c8081e50769abe6874a066dcf09

Analysis

max time kernel
51s
max time network
51s
platform
windows10-2004_x64
resource
win10v2004-20240508-en
resource tags

arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
submitted
20/06/2024, 18:59

Target

08df984e3d577649ef6c88863b0d30d4_JaffaCakes118.exe
Size

145KB
MD5

08df984e3d577649ef6c88863b0d30d4
SHA1

a947bea9173aa197045d450e90f7906d79e209ab
SHA256

2d41b2990cf78f7fee53caeb107b019e58006c8081e50769abe6874a066dcf09
SHA512

0f894931918c84a99376f21bc82a2922d089f190259bfe501aaac3a7fa44691e3432e1b6afbaf973b9b29917470ce0b25c5353b117796b0c201f1d624c13fc54
SSDEEP

3072:NlQEeHPMgJWdN/ZDBXoid1TaevDOKoaeievxOZx94:N6vM7H/oATaOTeZOa

Score

3^/10

Program crash 3 IoCs

pid	pid_target	Process	procid_target
1840	4628	WerFault.exe	79
4840	4628	WerFault.exe	79
3632	4628	WerFault.exe	79

C:\Users\Admin\AppData\Local\Temp\08df984e3d577649ef6c88863b0d30d4_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\08df984e3d577649ef6c88863b0d30d4_JaffaCakes118.exe"
1⤵
PID:4628
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4628 -s 220
  2⤵
  - Program crash
  PID:1840
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4628 -s 256
  2⤵
  - Program crash
  PID:4840
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4628 -s 300
  2⤵
  - Program crash
  PID:3632

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4628 -ip 4628
1⤵
PID:3000

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 440 -p 4628 -ip 4628
1⤵
PID:2964

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 536 -p 4628 -ip 4628
1⤵
PID:4000

memory/4628-0-0x0000000000400000-0x0000000000796000-memory.dmp

Filesize
3.6MB

Download
memory/4628-1-0x0000000000400000-0x0000000000796000-memory.dmp

Filesize
3.6MB

Download