6d05cf45fbb1431f62c698e21d7d251f21691aa78af950185ad586fd9f1e8d62

Analysis

max time kernel
151s
max time network
120s
platform
windows7_x64
resource
win7-20240220-en
resource tags

arch:x64arch:x86image:win7-20240220-enlocale:en-usos:windows7-x64system
submitted
24/06/2024, 11:09

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

0828f50beb7e8c6d0a00f00c7ff68eb6_JaffaCakes118.exe
Size

101KB
MD5

0828f50beb7e8c6d0a00f00c7ff68eb6
SHA1

bc9615e5a7807e75112e859d5a967ae372d2482c
SHA256

6d05cf45fbb1431f62c698e21d7d251f21691aa78af950185ad586fd9f1e8d62
SHA512

df1ae5dc9e7c1a1de17fbaa0ae757d7e25694e616f9b6e015d3a5758f2e7755a8e950d41b24fd1fea6ea39503b53bd438b85ff54a03d1786efbefb1c081c5b99
SSDEEP

1536:RWIF+FRqm30K9V39/DotX5kJufh69RGxbVGNDas20mRuYWsRnt3JgraylxrBgCcP:RlFYqa3ZcX/h2G5IsluYWsltNmLS

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
35792	3036	WerFault.exe	27

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 3036 wrote to memory of 35792	3036	0828f50beb7e8c6d0a00f00c7ff68eb6_JaffaCakes118.exe	28
PID 3036 wrote to memory of 35792	3036	0828f50beb7e8c6d0a00f00c7ff68eb6_JaffaCakes118.exe	28
PID 3036 wrote to memory of 35792	3036	0828f50beb7e8c6d0a00f00c7ff68eb6_JaffaCakes118.exe	28
PID 3036 wrote to memory of 35792	3036	0828f50beb7e8c6d0a00f00c7ff68eb6_JaffaCakes118.exe	28

C:\Users\Admin\AppData\Local\Temp\0828f50beb7e8c6d0a00f00c7ff68eb6_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\0828f50beb7e8c6d0a00f00c7ff68eb6_JaffaCakes118.exe"
1⤵
- Suspicious use of WriteProcessMemory
PID:3036
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3036 -s 116
  2⤵
  - Program crash
  PID:35792

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/3036-44-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-4-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-2-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-0-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-12-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-14-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-10-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-8-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-6-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-24-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-36-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-34-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-32-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-30-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-28-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-26-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-22-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-20-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-18-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-16-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-50-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-58-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-62-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-60-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-56-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-54-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-52-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-48-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-46-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-42-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-40-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download
memory/3036-38-0x0000000000400000-0x000000000042B000-memory.dmp

Filesize
172KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads