Analysis
-
max time kernel
149s -
max time network
158s -
platform
windows10-2004_x64 -
resource
win10v2004-20240709-en -
resource tags
arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system -
submitted
10-07-2024 05:03
Static task
static1
Behavioral task
behavioral1
Sample
336515114f6766d65c0531476746dba1_JaffaCakes118.js
Resource
win7-20240705-en
windows7-x64
1 signatures
150 seconds
Behavioral task
behavioral2
Sample
336515114f6766d65c0531476746dba1_JaffaCakes118.js
Resource
win10v2004-20240709-en
windows10-2004-x64
1 signatures
150 seconds
General
-
Target
336515114f6766d65c0531476746dba1_JaffaCakes118.js
-
Size
72KB
-
MD5
336515114f6766d65c0531476746dba1
-
SHA1
a1e08bab6ca46bffa022a4abb97a67a4cd7afbe6
-
SHA256
15a7dd6fff60322beb53cd0b11cf764a32fe9947afb6c263d5510bfef7260915
-
SHA512
9b3dcff3174ce024154b16cf04aa5b7e160634feee7bd06b3bd9fac44f1e991a19d61bf1854d4c3781a67fe69fa0508007aef01509b73ba372b6444e5c4e4589
-
SSDEEP
768:jSEjWkdnPothC0IQw/UXVQSsQCOvpPBvP7GYByOZOu0EPN1o:dp4hC0JVQSsQCOvpPxNFZO9
Score
3/10
Malware Config
Signatures
-
Command and Scripting Interpreter: JavaScript 1 TTPs
Processes
Network
-
Remote address:8.8.8.8:53Request68.159.190.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request88.156.103.20.in-addr.arpaIN PTRResponse
-
Remote address:8.8.8.8:53Request68.144.22.2.in-addr.arpaIN PTRResponse68.144.22.2.in-addr.arpaIN PTRa2-22-144-68deploystaticakamaitechnologiescom
-
Remote address:8.8.8.8:53Request26.73.42.20.in-addr.arpaIN PTRResponse
No results found
-
72 B 158 B 1 1
DNS Request
68.159.190.20.in-addr.arpa
-
72 B 158 B 1 1
DNS Request
88.156.103.20.in-addr.arpa
-
70 B 133 B 1 1
DNS Request
68.144.22.2.in-addr.arpa
-
70 B 156 B 1 1
DNS Request
26.73.42.20.in-addr.arpa