Overview

overview

7

Static

static

3

0a805ad97f...18.exe

windows7-x64

7

0a805ad97f...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    139s
  • max time network
    124s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240611-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
  • submitted
    24/06/2024, 19:46

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    0a805ad97f1de65fe162417121023b51_JaffaCakes118.exe

  • Size

    352KB

  • MD5

    0a805ad97f1de65fe162417121023b51

  • SHA1

    26c1e82e59bc805e9aadb233b6a2fdb29d5aa839

  • SHA256

    3f49d5767081f6b321b0c8e2294b4216dcd6e45bb6e21da797e4cda42c3cda69

  • SHA512

    d21e5a399fac706983ebc28532e52ab6f1828f238ad37c33f3dc82353ae1a37ac9c126957b61ae434367c22a6063abc5e66a29c3a96ec8807c9e592e1addf0dc

  • SSDEEP

    6144:MTvfDvKB89YKu+ed1u+q5BrtDZLB3Y/ITLLdUqDM0gzoMy:MTfjKMUdABBrtDZLBZvR9My

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\0a805ad97f1de65fe162417121023b51_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\0a805ad97f1de65fe162417121023b51_JaffaCakes118.exe"
    1⤵
      PID:224
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 224 -s 500
        2⤵
        • Program crash
        PID:2236
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 452 -p 224 -ip 224
      1⤵
        PID:3124

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • memory/224-0-0x0000000000560000-0x0000000000563000-memory.dmp

              Filesize

              12KB

              Download

            • memory/224-1-0x0000000001000000-0x00000000010A5000-memory.dmp

              Filesize

              660KB

              Download