8205b9e5bb2a38b86153e22d1272d61c8919c5fb38cd5b248e7721ae125f114d

Analysis

max time kernel
95s
max time network
97s
platform
windows10-2004_x64
resource
win10v2004-20240704-en
resource tags

arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
submitted
08/07/2024, 23:26

Target

2e35ef14ac9a810b37a707e8050f04f2_JaffaCakes118.exe
Size

432KB
MD5

2e35ef14ac9a810b37a707e8050f04f2
SHA1

aa15f9204f2f8dfaffaecddea95984795dad15b6
SHA256

8205b9e5bb2a38b86153e22d1272d61c8919c5fb38cd5b248e7721ae125f114d
SHA512

c5b3a7aa51ddff4c30a03ada8f8ce7ea6d0ff0a4bab34b5b2fbb6465c44d7147b6028e8677ebcc5ce83cbcf1d33b30cd5606493c362b5639f716c1db7684b5e6
SSDEEP

6144:byiMaL7dIrgn4FYhi2DkDgjXbZuduivfRStcUP7R9kyQhs6+4CeBim69j:byieFY940gddmcaf0uLMi3

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
3040	4720	WerFault.exe	81

C:\Users\Admin\AppData\Local\Temp\2e35ef14ac9a810b37a707e8050f04f2_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\2e35ef14ac9a810b37a707e8050f04f2_JaffaCakes118.exe"
1⤵
PID:4720
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4720 -s 532
  2⤵
  - Program crash
  PID:3040

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4720 -ip 4720
1⤵
PID:3488

memory/4720-0-0x0000000002230000-0x0000000002231000-memory.dmp

Filesize
4KB

Download
memory/4720-1-0x0000000000410000-0x00000000004EA000-memory.dmp

Filesize
872KB

Download