Overview

overview

3

Static

static

3

2a3900b5e7...18.exe

windows7-x64

1

2a3900b5e7...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    120s
  • max time network
    124s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    07/07/2024, 23:47

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    2a3900b5e7a694c97b54c0a37693193d_JaffaCakes118.exe

  • Size

    59KB

  • MD5

    2a3900b5e7a694c97b54c0a37693193d

  • SHA1

    63c74ab868ee62f32cfe574ff2c896a150adde2a

  • SHA256

    79143caa9eaf5e537b88cacb1bbd6f2db1764e29cbe2c60fdf454878712955ed

  • SHA512

    95697ae13c45857f0322ae243a7f0ef079b04c2fde45628fc22dd79279818b0621c5b0ee599d5f4568f90b06fbcf732c1355029024fba5ac4f7c692b91894531

  • SSDEEP

    1536:FDI5qaE70o6rdNgZq5LgHiuN17Fn/VkLX87:im0vdqq5LcB17BVkLX87

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 3 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2a3900b5e7a694c97b54c0a37693193d_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\2a3900b5e7a694c97b54c0a37693193d_JaffaCakes118.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2284

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2284-0-0x0000000000400000-0x0000000000458000-memory.dmp

          Filesize

          352KB

          Download