Analysis
-
max time kernel
120s -
max time network
121s -
platform
windows7_x64 -
resource
win7-20231129-en -
resource tags
-
submitted
25-06-2024 00:24
General
-
Target
0b80dc5bc8e8238b4754ad0bf65b49b8_JaffaCakes118.exe
-
Size
91KB
-
MD5
0b80dc5bc8e8238b4754ad0bf65b49b8
-
SHA1
7707e96e86ca4f8c9b89abc8fc9d037113284624
-
SHA256
dc983922e443239ecce669d9cdb648114f6f281578547095fe5bdd952d720731
-
SHA512
bd70fa6720fb707d43c81a222486519e29e2e2bab639c4ea3019690cba4810ed5a559cd4791284e89269a5bb3bab21f808dd6d7e743b6f4813a0e7c3f21028a7
-
SSDEEP
1536:EGwtRxOBJyypgmDjVwCfIAIYfGJmIMWtEMfgjtEFH6:NwtRonyypexoiNtxYGa
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 1 IoCs
-
Suspicious behavior: MapViewOfSection 1 IoCs
-
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\0b80dc5bc8e8238b4754ad0bf65b49b8_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\0b80dc5bc8e8238b4754ad0bf65b49b8_JaffaCakes118.exe"1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: MapViewOfSection
- Suspicious use of AdjustPrivilegeToken