Overview

overview

3

Static

static

3

27fc8a3a8f...18.exe

windows7-x64

3

27fc8a3a8f...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    95s
  • max time network
    138s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240704-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
  • submitted
    06-07-2024 09:00

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    27fc8a3a8f06337faad135c68b825cb6_JaffaCakes118.exe

  • Size

    28KB

  • MD5

    27fc8a3a8f06337faad135c68b825cb6

  • SHA1

    f5a4ab24b9b8adbd00574724a854b115811393ae

  • SHA256

    7463204973d3efea1ca96719b8b83f9c5acb91c94b6deec70874e086085b637d

  • SHA512

    81148bbd38df5fe240ba46e160f223ab04eefd8a57929d7f2b9d7eae0c358c3c8e901b9b5241675b410a78a6491d66c88152668bf72c7f6af0d5f76675ba314e

  • SSDEEP

    768:7Exue5lZFoEb5eSpnqKtq/aZQneOE6oxM:0uMlZCALBt9g7E6oG

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\27fc8a3a8f06337faad135c68b825cb6_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\27fc8a3a8f06337faad135c68b825cb6_JaffaCakes118.exe"
    1⤵
      PID:3964
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 3964 -s 224
        2⤵
        • Program crash
        PID:1504
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 3964 -ip 3964
      1⤵
        PID:5040

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/3964-0-0x000000000040D000-0x0000000000413000-memory.dmp

        Filesize

        24KB

        Download

      • memory/3964-1-0x0000000000400000-0x0000000000415000-memory.dmp

        Filesize

        84KB

        Download