Analysis
-
max time kernel
150s -
max time network
122s -
platform
windows7_x64 -
resource
win7-20240508-en -
resource tags
-
submitted
25-06-2024 03:14
General
-
Target
0c3d3e8464ffbe289ecf15a685c1c76f_JaffaCakes118.exe
-
Size
176KB
-
MD5
0c3d3e8464ffbe289ecf15a685c1c76f
-
SHA1
73c2f5c2ba426c5eef7ec91e9cd98973ad25f1f4
-
SHA256
f19e6d3dcdea80b9a05e67b296e37ffa59cc4081e9789290f490e4175166c1fc
-
SHA512
cd81a5d016d8c4f8a50c8279dc9a02311c2116bc22e3b7edde9933e7152ae060278b1aeb517995615bcc40ceb8e0ba0db34547b0eec7fe13555dc75a9aaed686
-
SSDEEP
3072:sWIKLnOesPIqaGqqCG6K3StodupRARFlXNARpSTdBwRlV4qxH:sYOe4IqaGqqCG6K3SuduLARFl9ARpS02
Score
7/10
Malware Config
Signatures
-
Executes dropped EXE 64 IoCs
-
Loads dropped DLL 64 IoCs
-
Suspicious use of SetWindowsHookEx 64 IoCs
-
Suspicious use of WriteProcessMemory 64 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\0c3d3e8464ffbe289ecf15a685c1c76f_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\0c3d3e8464ffbe289ecf15a685c1c76f_JaffaCakes118.exe"1⤵
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 12⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 13⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 14⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 15⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 16⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 17⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 18⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 19⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 110⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 111⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 112⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 113⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 114⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 115⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 116⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 117⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 118⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 119⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 120⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 121⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 122⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 123⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 124⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 125⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 126⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 127⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 128⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 129⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 130⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 131⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 132⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 133⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 134⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 135⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 136⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 137⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 138⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 139⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 140⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 141⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 142⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 143⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 144⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 145⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 146⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 147⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 148⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 149⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 150⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 151⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 152⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 153⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 154⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 155⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 156⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 157⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 158⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 159⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 160⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 161⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 162⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 163⤵
- Executes dropped EXE
- Loads dropped DLL
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 164⤵
- Executes dropped EXE
- Suspicious use of SetWindowsHookEx
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 165⤵
- Executes dropped EXE
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 166⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 167⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 168⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 169⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 170⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 171⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 172⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 173⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 174⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 175⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 176⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 177⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 178⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 179⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 180⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 181⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 182⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 183⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 184⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 185⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 186⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 187⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 188⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 189⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 190⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 191⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 192⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 193⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 194⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 195⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 196⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 197⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 198⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 199⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1100⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1101⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1102⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1103⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1104⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1105⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1106⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1107⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1108⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1109⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1110⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1111⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1112⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1113⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1114⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1115⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1116⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1117⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1118⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1119⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1120⤵
-
C:\Users\Admin\AppData\Local\Temp\moo2.exemoo2.exe 1121⤵
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-