eddada416eef34de8a343e9158e7fdee33db83d73e6389e3c938ad1474305b06

Analysis

max time kernel
133s
max time network
123s
platform
windows10-2004_x64
resource
win10v2004-20240611-en
resource tags

arch:x64arch:x86image:win10v2004-20240611-enlocale:en-usos:windows10-2004-x64system
submitted
27-06-2024 16:18

Target

16aae906b29c029999bfc69c13b27235_JaffaCakes118.exe
Size

44KB
MD5

16aae906b29c029999bfc69c13b27235
SHA1

cc7e907cb9e34af7b676331911874565365b4ec8
SHA256

eddada416eef34de8a343e9158e7fdee33db83d73e6389e3c938ad1474305b06
SHA512

d4071c50fb96fd2065428560b924f8deb4a9c63171628d7cb95e47177effa2ee6272d907ce6f05c1fd901a26256d6084180bcb18a6fc34817bf0b3aa7bed9a79
SSDEEP

768:scu7/k7FeNjuWvYUf0u+n1R04qaPtQHJ2QDDDDDiEq1+kWFZ:sHczURSRPPPQUQDDDDDi985F

Score

1^/10

Suspicious behavior: EnumeratesProcesses 10 IoCs

C:\Users\Admin\AppData\Local\Temp\16aae906b29c029999bfc69c13b27235_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\16aae906b29c029999bfc69c13b27235_JaffaCakes118.exe"
1⤵
- Suspicious behavior: EnumeratesProcesses
PID:3104

memory/3104-1-0x00000000001C0000-0x00000000001C2000-memory.dmp

Filesize
8KB

Download
memory/3104-0-0x0000000000400000-0x000000000041E000-memory.dmp

Filesize
120KB

Download
memory/3104-2-0x0000000000400000-0x000000000041E000-memory.dmp

Filesize
120KB

Download