0d2aa2e1f46991ce6fcb99199997b31796282eec97f29a7d8ca13b6e31d4c0ef

Analysis

max time kernel
149s
max time network
153s
platform
windows10-2004_x64
resource
win10v2004-20240704-en
resource tags

arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
submitted
08/07/2024, 12:43

Target

2c6391a99f00d79fec5e84eacfc9307c_JaffaCakes118.exe
Size

1.5MB
MD5

2c6391a99f00d79fec5e84eacfc9307c
SHA1

b041357aa3963fd387249a307a87d1fc42525afd
SHA256

0d2aa2e1f46991ce6fcb99199997b31796282eec97f29a7d8ca13b6e31d4c0ef
SHA512

e15d09b435ccd0ae51b3f4bf1bb5c43c5d9087875da2439141893f45023339242b754854d141f7e9c137bbc388189e0d8669a6f9ef06efc07613856f0dda5a61
SSDEEP

24576:8/5fCp0Cr6iKcU9Uy0iXsfla8D0GBML6juUg1LlKYIcr6+1JpEAA:8s2iKc/h9r0GaTdZKYIcr6UzE

Score

1^/10

Suspicious use of SetWindowsHookEx 5 IoCs

pid	Process
4320	2c6391a99f00d79fec5e84eacfc9307c_JaffaCakes118.exe
4320	2c6391a99f00d79fec5e84eacfc9307c_JaffaCakes118.exe
4320	2c6391a99f00d79fec5e84eacfc9307c_JaffaCakes118.exe
4320	2c6391a99f00d79fec5e84eacfc9307c_JaffaCakes118.exe
4320	2c6391a99f00d79fec5e84eacfc9307c_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\2c6391a99f00d79fec5e84eacfc9307c_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\2c6391a99f00d79fec5e84eacfc9307c_JaffaCakes118.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:4320