52e9600f0821367025a93c91213b3167a8df45e3a7d7bd9b1c10c76abc3d00c8

Analysis

max time kernel
93s
max time network
107s
platform
windows10-2004_x64
resource
win10v2004-20240704-en
resource tags

arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
submitted
08-07-2024 01:19

Target

2a7a8fa3ae79a0ed53acf56aed41422e_JaffaCakes118.exe
Size

148KB
MD5

2a7a8fa3ae79a0ed53acf56aed41422e
SHA1

8c16ba97a597136a53e7a954a0646b103723fbeb
SHA256

52e9600f0821367025a93c91213b3167a8df45e3a7d7bd9b1c10c76abc3d00c8
SHA512

b9217d0713c4e316228323f3f6b6b3dcb2878dc3d92c63eba16fe8c50d4c8b6a7a6b09a948a1c526aaba11d0e319e90ea106b1935ed2951dfa8734cbfc6a8ce8
SSDEEP

1536:YdtGCn1jb1yjYG3PYL0aTqkFXTeiFvdJkmuu70jlqhqSb4gdC2vayq1GOJsA4:YaGf1yxYL1tXZvdim5qSbxiyMGOC

Score

1^/10

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
2916	2a7a8fa3ae79a0ed53acf56aed41422e_JaffaCakes118.exe
2916	2a7a8fa3ae79a0ed53acf56aed41422e_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\2a7a8fa3ae79a0ed53acf56aed41422e_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\2a7a8fa3ae79a0ed53acf56aed41422e_JaffaCakes118.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:2916

memory/2916-3-0x0000000002AD0000-0x0000000002AD1000-memory.dmp

Filesize
4KB

Download
memory/2916-4-0x0000000002AE0000-0x0000000002AE1000-memory.dmp

Filesize
4KB

Download
memory/2916-5-0x0000000002AF0000-0x0000000002AF1000-memory.dmp

Filesize
4KB

Download