Overview

overview

6

Static

static

3

2c49c5661a...18.exe

windows7-x64

6

2c49c5661a...18.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    141s
  • max time network
    137s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240704-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
  • submitted
    08-07-2024 12:08

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2c49c5661a6f0c0282ea2f7780c29e76_JaffaCakes118.exe

  • Size

    475KB

  • MD5

    2c49c5661a6f0c0282ea2f7780c29e76

  • SHA1

    b2b2250ea479522bf7c8a92afd0d7a083c9c39ce

  • SHA256

    e2dd5ab14ac95b33094495070fcb6b1b2d16b6c48ba7762313d1a9af3978a827

  • SHA512

    5a23bc7b707c65174a15054ad59de8ae71b7db3a68996146b0940e4952632127d5ee7ce7622dce05570fdd04ce4fe30771b1b47a375b4874f353805cd432e1bf

  • SSDEEP

    6144:Xi9Iy37yxuxvjABAv6fIxcrRsdTAcbnwXupN8totEYjEAstwIUF6Z:eIy37EuxvMa6fIx4gUcbr82tsVtd

Score
6/10
persistence

Malware Config

Signatures

  • Adds Run key to start application 2 TTPs 1 IoCs
    persistence

Processes

  • C:\Users\Admin\AppData\Local\Temp\2c49c5661a6f0c0282ea2f7780c29e76_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\2c49c5661a6f0c0282ea2f7780c29e76_JaffaCakes118.exe"
    1⤵
    • Adds Run key to start application
    PID:2576

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2576-0-0x0000000000730000-0x0000000000731000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2576-1-0x0000000000400000-0x000000000047D000-memory.dmp

    Filesize

    500KB

    Download

  • memory/2576-3-0x0000000000730000-0x0000000000731000-memory.dmp

    Filesize

    4KB

    Download