Overview

overview

6

Static

static

3

33e0d10ed7...18.exe

windows7-x64

6

33e0d10ed7...18.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    149s
  • max time network
    153s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    10/07/2024, 07:56

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    33e0d10ed78082113c4b0471e8eda70b_JaffaCakes118.exe

  • Size

    437KB

  • MD5

    33e0d10ed78082113c4b0471e8eda70b

  • SHA1

    04bc9f554f183596a8086d755c618b84fc83b5cd

  • SHA256

    438a98050f85ae460f8828dbb79367ca6e05acaf42ee5ef7ec3624339b1e042e

  • SHA512

    bac9a2f2fa9745cae96a5b07ab7be43248157cf3346cf80c749bdc99b78f0271a3f9df852275c44f8a49dd2fe7825249bb4a8c8b862c757d4713077fc49a3923

  • SSDEEP

    6144:r9yZDxwrAZjHx5585ptrxjBIdhQM5OcZGiysMOYf2ij0sh8CIpz7IG:hrAZzx/QrUrQKOcpcwsaqG

Score
6/10
persistence

Malware Config

Signatures

  • Adds Run key to start application 2 TTPs 2 IoCs
    persistence
  • Drops file in Windows directory 1 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\33e0d10ed78082113c4b0471e8eda70b_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\33e0d10ed78082113c4b0471e8eda70b_JaffaCakes118.exe"
    1⤵
    • Adds Run key to start application
    • Drops file in Windows directory
    • Suspicious use of SetWindowsHookEx
    PID:4696

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/4696-0-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download

  • memory/4696-5-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download

  • memory/4696-6-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download

  • memory/4696-7-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download

  • memory/4696-8-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download

  • memory/4696-9-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download

  • memory/4696-10-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download

  • memory/4696-11-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download

  • memory/4696-12-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download

  • memory/4696-13-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download

  • memory/4696-14-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download

  • memory/4696-15-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download

  • memory/4696-16-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download

  • memory/4696-17-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download

  • memory/4696-18-0x0000000000400000-0x000000000046E000-memory.dmp

    Filesize

    440KB

    Download