Overview

overview

7

Static

static

7

0e23821920...18.exe

windows7-x64

7

0e23821920...18.exe

windows10-2004-x64

7

Analysis

  • max time kernel
    147s
  • max time network
    151s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240508-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240508-enlocale:en-usos:windows10-2004-x64system
  • submitted
    25-06-2024 12:49

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    0e23821920dcdee4d1847ff59fe6746d_JaffaCakes118.exe

  • Size

    847KB

  • MD5

    0e23821920dcdee4d1847ff59fe6746d

  • SHA1

    f84339597cec55eaef3032f91307058499ef6b5c

  • SHA256

    d28f731b8ce9007954d73a524bd583afd1cef384b935091e6c20483d9194e343

  • SHA512

    c61fb193b07f3ec3d3171b02023626d83a282b40c8aafe43163fdbec32d35acb2f4a3f408b2a846b31c32f27a88d1259210be5b8ba56ab79d5ceb7ed1a19e6b0

  • SSDEEP

    24576:uFE//Tct4bOskEAXAwhxM0scNJniSf4bZoSyLve:ESVpCpjJnfW

Score
7/10
upx

Malware Config

Signatures

  • UPX packed file 2 IoCs

    Detects executables packed with UPX/modified UPX open source packer.

    upx
  • AutoIT Executable 1 IoCs

    AutoIT scripts compiled to PE executables.

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

Processes

  • C:\Users\Admin\AppData\Local\Temp\0e23821920dcdee4d1847ff59fe6746d_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\0e23821920dcdee4d1847ff59fe6746d_JaffaCakes118.exe"
    1⤵
      PID:2740

    Network

    MITRE ATT&CK Enterprise v15

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2740-0-0x0000000000400000-0x00000000004BF000-memory.dmp

      Filesize

      764KB

      Download

    • memory/2740-1-0x0000000000400000-0x00000000004BF000-memory.dmp

      Filesize

      764KB

      Download