ae65a3dc14a91874993e48bf48e1734a16bd1398e6461f57a20d01afeedb827a

Analysis

max time kernel
149s
max time network
156s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
09-07-2024 16:29

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

311fbe9d57899e27f268dc1b35aa3c14_JaffaCakes118.exe
Size

394KB
MD5

311fbe9d57899e27f268dc1b35aa3c14
SHA1

a6222e10f4bfc0ae799492d814e4c9b4375bf016
SHA256

ae65a3dc14a91874993e48bf48e1734a16bd1398e6461f57a20d01afeedb827a
SHA512

f3245773c8dc632b55fc5f230624087378675d0dfa379989317faecf2fd106a7e31d26c0e0b7f66e266659b341a3ee303c81abf7895e4bdb1c0b52d96b8be96d
SSDEEP

12288:GDUQRxrlpg6b7MP+Dd2K6W6b7MP+Dd2CL4lu:q7xt7MP+h2K637MP+h24su

Score

3^/10

Malware Config

Signatures

Program crash 1 IoCs

pid	pid_target	Process	procid_target
5008	2956	WerFault.exe	79

Modifies registry class 3 IoCs

description	ioc	Process
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.key\ = "regfile"	311fbe9d57899e27f268dc1b35aa3c14_JaffaCakes118.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\.key	311fbe9d57899e27f268dc1b35aa3c14_JaffaCakes118.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.key\	311fbe9d57899e27f268dc1b35aa3c14_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\311fbe9d57899e27f268dc1b35aa3c14_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\311fbe9d57899e27f268dc1b35aa3c14_JaffaCakes118.exe"
1⤵
- Modifies registry class
PID:2956
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 2956 -s 472
  2⤵
  - Program crash
  PID:5008

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 2956 -ip 2956
1⤵
PID:4972

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2956-0-0x0000000000400000-0x0000000000478000-memory.dmp

Filesize
480KB

Download
memory/2956-1-0x0000000002200000-0x0000000002230000-memory.dmp

Filesize
192KB

Download
memory/2956-2-0x0000000002330000-0x0000000002334000-memory.dmp

Filesize
16KB

Download
memory/2956-3-0x0000000000750000-0x0000000000751000-memory.dmp

Filesize
4KB

Download
memory/2956-5-0x0000000000730000-0x0000000000731000-memory.dmp

Filesize
4KB

Download
memory/2956-19-0x0000000002430000-0x0000000002431000-memory.dmp

Filesize
4KB

Download
memory/2956-18-0x0000000002440000-0x0000000002441000-memory.dmp

Filesize
4KB

Download
memory/2956-17-0x0000000002410000-0x0000000002411000-memory.dmp

Filesize
4KB

Download
memory/2956-16-0x0000000002420000-0x0000000002421000-memory.dmp

Filesize
4KB

Download
memory/2956-15-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download
memory/2956-14-0x0000000002400000-0x0000000002401000-memory.dmp

Filesize
4KB

Download
memory/2956-13-0x00000000023D0000-0x00000000023D1000-memory.dmp

Filesize
4KB

Download
memory/2956-20-0x0000000002460000-0x0000000002461000-memory.dmp

Filesize
4KB

Download
memory/2956-12-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/2956-11-0x00000000023B0000-0x00000000023B1000-memory.dmp

Filesize
4KB

Download
memory/2956-48-0x0000000002640000-0x0000000002641000-memory.dmp

Filesize
4KB

Download
memory/2956-47-0x0000000002610000-0x0000000002611000-memory.dmp

Filesize
4KB

Download
memory/2956-46-0x0000000002620000-0x0000000002621000-memory.dmp

Filesize
4KB

Download
memory/2956-45-0x00000000025F0000-0x00000000025F1000-memory.dmp

Filesize
4KB

Download
memory/2956-44-0x0000000002600000-0x0000000002601000-memory.dmp

Filesize
4KB

Download
memory/2956-53-0x0000000002660000-0x0000000002661000-memory.dmp

Filesize
4KB

Download
memory/2956-52-0x0000000002670000-0x0000000002671000-memory.dmp

Filesize
4KB

Download
memory/2956-50-0x0000000002650000-0x0000000002651000-memory.dmp

Filesize
4KB

Download
memory/2956-51-0x0000000002680000-0x0000000002681000-memory.dmp

Filesize
4KB

Download
memory/2956-49-0x0000000002630000-0x0000000002631000-memory.dmp

Filesize
4KB

Download
memory/2956-43-0x00000000025D0000-0x00000000025D1000-memory.dmp

Filesize
4KB

Download
memory/2956-42-0x00000000025E0000-0x00000000025E1000-memory.dmp

Filesize
4KB

Download
memory/2956-41-0x00000000025A0000-0x00000000025A1000-memory.dmp

Filesize
4KB

Download
memory/2956-40-0x00000000025C0000-0x00000000025C1000-memory.dmp

Filesize
4KB

Download
memory/2956-39-0x0000000002580000-0x0000000002581000-memory.dmp

Filesize
4KB

Download
memory/2956-38-0x0000000002590000-0x0000000002591000-memory.dmp

Filesize
4KB

Download
memory/2956-37-0x0000000002560000-0x0000000002561000-memory.dmp

Filesize
4KB

Download
memory/2956-36-0x0000000002570000-0x0000000002571000-memory.dmp

Filesize
4KB

Download
memory/2956-35-0x0000000002540000-0x0000000002541000-memory.dmp

Filesize
4KB

Download
memory/2956-34-0x0000000002550000-0x0000000002551000-memory.dmp

Filesize
4KB

Download
memory/2956-33-0x0000000002520000-0x0000000002521000-memory.dmp

Filesize
4KB

Download
memory/2956-32-0x0000000002530000-0x0000000002531000-memory.dmp

Filesize
4KB

Download
memory/2956-31-0x0000000002500000-0x0000000002501000-memory.dmp

Filesize
4KB

Download
memory/2956-30-0x0000000002510000-0x0000000002511000-memory.dmp

Filesize
4KB

Download
memory/2956-29-0x00000000024D0000-0x00000000024D1000-memory.dmp

Filesize
4KB

Download
memory/2956-28-0x00000000024F0000-0x00000000024F1000-memory.dmp

Filesize
4KB

Download
memory/2956-27-0x00000000024B0000-0x00000000024B1000-memory.dmp

Filesize
4KB

Download
memory/2956-26-0x00000000024C0000-0x00000000024C1000-memory.dmp

Filesize
4KB

Download
memory/2956-25-0x0000000002490000-0x0000000002491000-memory.dmp

Filesize
4KB

Download
memory/2956-24-0x00000000024A0000-0x00000000024A1000-memory.dmp

Filesize
4KB

Download
memory/2956-23-0x0000000002470000-0x0000000002471000-memory.dmp

Filesize
4KB

Download
memory/2956-22-0x0000000002480000-0x0000000002481000-memory.dmp

Filesize
4KB

Download
memory/2956-21-0x0000000002450000-0x0000000002451000-memory.dmp

Filesize
4KB

Download
memory/2956-10-0x00000000023C0000-0x00000000023C1000-memory.dmp

Filesize
4KB

Download
memory/2956-9-0x0000000002380000-0x0000000002381000-memory.dmp

Filesize
4KB

Download
memory/2956-8-0x00000000023A0000-0x00000000023A1000-memory.dmp

Filesize
4KB

Download
memory/2956-7-0x0000000002350000-0x0000000002351000-memory.dmp

Filesize
4KB

Download
memory/2956-6-0x0000000000740000-0x0000000000741000-memory.dmp

Filesize
4KB

Download
memory/2956-4-0x0000000002340000-0x0000000002341000-memory.dmp

Filesize
4KB

Download
memory/2956-57-0x00000000026B0000-0x00000000026B1000-memory.dmp

Filesize
4KB

Download
memory/2956-56-0x00000000026C0000-0x00000000026C1000-memory.dmp

Filesize
4KB

Download
memory/2956-55-0x0000000002690000-0x0000000002691000-memory.dmp

Filesize
4KB

Download
memory/2956-54-0x00000000026A0000-0x00000000026A1000-memory.dmp

Filesize
4KB

Download
memory/2956-59-0x0000000000400000-0x0000000000478000-memory.dmp

Filesize
480KB

Download
memory/2956-60-0x0000000002200000-0x0000000002230000-memory.dmp

Filesize
192KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads