8899fdec916f156c5c92007f5adabc9eb0a37149d8f10418a5ee4b4a1814aa1b

Analysis

max time kernel
149s
max time network
158s
platform
windows10-2004_x64
resource
win10v2004-20240704-en
resource tags

arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
submitted
09/07/2024, 01:52

Target

2e974f7e9c3f9625bed879120e186ed4_JaffaCakes118.exe
Size

28KB
MD5

2e974f7e9c3f9625bed879120e186ed4
SHA1

fd982f8c96f96c351d5e36228d4019f66897f0a3
SHA256

8899fdec916f156c5c92007f5adabc9eb0a37149d8f10418a5ee4b4a1814aa1b
SHA512

9ad487b81797056852a88f54bf437ec26ca05020834b322c37c1c4daa4ba6892d364458c8f9fdbecd9c243bf56472a798fcc0c7347844703f829cd00ef2ec1cc
SSDEEP

192:2xYoPQzBZq91M9HFJ2HLzh3S+OAV1MVtLyst5I:2qoPGB4XUJK1V1Myst5

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
3564	3000	WerFault.exe	81
3100	3000	WerFault.exe	81

C:\Users\Admin\AppData\Local\Temp\2e974f7e9c3f9625bed879120e186ed4_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\2e974f7e9c3f9625bed879120e186ed4_JaffaCakes118.exe"
1⤵
PID:3000
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3000 -s 252
  2⤵
  - Program crash
  PID:3564
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3000 -s 308
  2⤵
  - Program crash
  PID:3100

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 184 -p 3000 -ip 3000
1⤵
PID:1528

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 528 -p 3000 -ip 3000
1⤵
PID:2936

memory/3000-0-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/3000-1-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download