1bf3097fac0f379f690ea2d926d226458639eb0241fff2680e2284cc47e894a0

Analysis

max time kernel
133s
max time network
125s
platform
windows10-2004_x64
resource
win10v2004-20240611-en
resource tags

arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
submitted
27-06-2024 14:53

Target

16685c184b5ea6e5332b46837a8ecf84_JaffaCakes118.exe
Size

9.1MB
MD5

16685c184b5ea6e5332b46837a8ecf84
SHA1

f10a27be856ae790656869afac684fe54cd93576
SHA256

1bf3097fac0f379f690ea2d926d226458639eb0241fff2680e2284cc47e894a0
SHA512

567cb0152494e77a0d67ebe22d21f2dc68a7e5d88d04de8f5b6ea02fb49abff1e870103f908d73a1fa82d5f609699c2bb0c0ff89fbe006ce629145b40802bdd1
SSDEEP

98304:NLxGpCCpUFvzrz9+XNJEJgOogwBoSp6JlTgv76X9y9aKzq:ZxGpCCwYXwJgOip4sSoaKG

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
1884	100	WerFault.exe	82
1456	100	WerFault.exe	82

C:\Users\Admin\AppData\Local\Temp\16685c184b5ea6e5332b46837a8ecf84_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\16685c184b5ea6e5332b46837a8ecf84_JaffaCakes118.exe"
1⤵
PID:100
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 100 -s 252
  2⤵
  - Program crash
  PID:1884
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 100 -s 304
  2⤵
  - Program crash
  PID:1456

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 100 -ip 100
1⤵
PID:1664

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 524 -p 100 -ip 100
1⤵
PID:940

memory/100-0-0x0000000000400000-0x0000000000D14000-memory.dmp

Filesize
9.1MB

Download