Overview

overview

1

Static

static

1

2f8b655bcd...18.exe

windows7-x64

1

2f8b655bcd...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    92s
  • max time network
    133s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240708-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240708-enlocale:en-usos:windows10-2004-x64system
  • submitted
    09-07-2024 07:55

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2f8b655bcdeed124528050f98fe27074_JaffaCakes118.exe

  • Size

    625KB

  • MD5

    2f8b655bcdeed124528050f98fe27074

  • SHA1

    54de69db02255a71f1b3590cbff4c58e9c249921

  • SHA256

    bcde792d36f99a626fc16759bcd01881105d65431d252f7a0789a4bd0406ff20

  • SHA512

    c3ed48164df132aa93002668fb0c2d227fd34887f013f95d977c671baffaf3311d59761eb7819711416625a2bdcc51ac0a6d666a68c1440cdde58fcd17d58e22

  • SSDEEP

    12288:3VfdxeaKrd9Qbkv+7JYipP9UWyKQjHg0eTt9dhQnoq0eT/SpRc:3V1x1Krd9QbkvQJY87y5jHgl9dhXY8c

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\2f8b655bcdeed124528050f98fe27074_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\2f8b655bcdeed124528050f98fe27074_JaffaCakes118.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:1088

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\offconfig.temp
    Filesize

    41KB

    MD5

    e6176e10c37f7ca06a3fb0d1ac91e3e0

    SHA1

    5c06ad2d661fe7271b944d6e4866f3b3fd79aa97

    SHA256

    eecad52676e058792d7dc2774d11ed82497355140b8ad7e04e0188643877a1ed

    SHA512

    de6aa25b3fd17a37ccb46bbbf3d33eed17a0a4e217e82c96ee0f389e738194fca1e92316cec95864e23e5a3efaa7ff4dcd00e60c76c5b03be1cd84e3ae8df0ec

    Download Submit