40cf31bfa59032978f7bdc6c3dec868066bb10ca8aed6ae99fac930cfe9dbeb2

Analysis

max time kernel
140s
max time network
124s
platform
windows10-2004_x64
resource
win10v2004-20240611-en
resource tags

arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
submitted
24-06-2024 14:05

Target

08f433e5f5bf8a29655516ee30d39011_JaffaCakes118.exe
Size

4.4MB
MD5

08f433e5f5bf8a29655516ee30d39011
SHA1

61c0ae1d4471d185f9e0802b130158ab63a45c84
SHA256

40cf31bfa59032978f7bdc6c3dec868066bb10ca8aed6ae99fac930cfe9dbeb2
SHA512

2052412498a289024eb3f46e0404326122e6ab7d2342efa8c25b15dfe535c76e00833730cf18b7d7e0abdfdda4400ce37da32cd02ef2cd708470eeb8f3c41606
SSDEEP

98304:HaqPRM0eiNotyGfCV+GoVgXpKpFae+qbCe+sPNUxrTDdFe5cVF+DKv:JJei+QGfCV+GugXpKpQEDTPGvJVVYKv

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
2716	612	WerFault.exe	83
3460	612	WerFault.exe	83

C:\Users\Admin\AppData\Local\Temp\08f433e5f5bf8a29655516ee30d39011_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\08f433e5f5bf8a29655516ee30d39011_JaffaCakes118.exe"
1⤵
PID:612
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 612 -s 632
  2⤵
  - Program crash
  PID:2716
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 612 -s 652
  2⤵
  - Program crash
  PID:3460

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 356 -p 612 -ip 612
1⤵
PID:984

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 508 -p 612 -ip 612
1⤵
PID:1792

memory/612-0-0x0000000002710000-0x00000000028C5000-memory.dmp

Filesize
1.7MB

Download
memory/612-1-0x0000000000401000-0x0000000000403000-memory.dmp

Filesize
8KB

Download
memory/612-3-0x0000000000400000-0x0000000000769000-memory.dmp

Filesize
3.4MB

Download
memory/612-2-0x0000000000400000-0x0000000000769000-memory.dmp

Filesize
3.4MB

Download
memory/612-5-0x0000000002710000-0x00000000028C5000-memory.dmp

Filesize
1.7MB

Download