Overview

overview

4

Static

static

3

1688c551d9...18.exe

windows7-x64

4

1688c551d9...18.exe

windows10-2004-x64

4

Analysis

  • max time kernel
    149s
  • max time network
    128s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240611-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
  • submitted
    27/06/2024, 15:31

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    1688c551d983bbe3877d4ca9dcc50949_JaffaCakes118.exe

  • Size

    280KB

  • MD5

    1688c551d983bbe3877d4ca9dcc50949

  • SHA1

    bdfdcb947153832987899aeec2d152f56be04bce

  • SHA256

    e79dcbcba2a70fabcf465bedc16a23a30e585b5fa3fcbaa1dae966a84146b9d6

  • SHA512

    5c00f6e6b01bdbdd037008a573db3cbc8139f302874a47f41120320b8ece48cc43b5aa02ec312478a354a1e8f3083bcdf02346d4610a2e388f8f36e46853b2a9

  • SSDEEP

    3072:tJWE6qLudxOw0kup9R76lvb5vzNs7T1m62tTBfiuJ9:tAXqkO59RGxlvzS7pT2tTB6uJ9

Score
4/10

Malware Config

Signatures

  • Drops file in Program Files directory 3 IoCs
  • Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\1688c551d983bbe3877d4ca9dcc50949_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\1688c551d983bbe3877d4ca9dcc50949_JaffaCakes118.exe"
    1⤵
    • Drops file in Program Files directory
    • Suspicious behavior: EnumeratesProcesses
    PID:2552

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe
    Filesize

    280KB

    MD5

    c7008156f218a20e42114a5a6218baa3

    SHA1

    0b775449b27a1d7f264f0d49691403016b1584d2

    SHA256

    b1d440ed76e656b4ddc87d66aa927ec9be4f480db062a9e7e015e259eebe0629

    SHA512

    db362de771fb625dc7a87699d11ace1fdf21b7b1e39f3236ab7a8da7f1c8935583be8c5301c94d3017c5d1aec8c47c14e9ec9ecdb7373dcf83e5d66344aed0c4

    Download Submit