Analysis
-
max time kernel
150s -
max time network
160s -
platform
windows10-2004_x64 -
resource
win10v2004-20240709-en -
resource tags
-
submitted
11/07/2024, 09:43
General
-
Target
389d410681a94ef06d95a365c04ffa7d_JaffaCakes118.exe
-
Size
471KB
-
MD5
389d410681a94ef06d95a365c04ffa7d
-
SHA1
75bef078970e7da547a612b8f50d5d060ada1b73
-
SHA256
b6978328973f75d738f32e4fec800c54532284d7848e16389794e9057500b308
-
SHA512
64b8c9908e016d337f6e6524422119f24e3a52bb4d339e237d97e59424b07c3e585f92678397d02179593e288b1f77f22bc176e8c2c9cf34d4d0494ac97a60b7
-
SSDEEP
6144:PEoKz95zMcj+64EFkeAY00pkl9tLY6tiRPxX8Id/7Of16S2hbCb:P1Kz95zn6Y+lYppkl9tLY6IRXhOkXCb
Score
3/10
Malware Config
Signatures
-
Program crash 3 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\389d410681a94ef06d95a365c04ffa7d_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\389d410681a94ef06d95a365c04ffa7d_JaffaCakes118.exe"1⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 3288 -s 7162⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 3288 -s 7562⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -u -p 3288 -s 7642⤵
- Program crash
-
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 364 -p 3288 -ip 32881⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 520 -p 3288 -ip 32881⤵
-
C:\Windows\SysWOW64\WerFault.exeC:\Windows\SysWOW64\WerFault.exe -pss -s 508 -p 3288 -ip 32881⤵
Network
MITRE ATT&CK Matrix
Replay Monitor
Loading Replay Monitor...
Downloads
-
Filesize
2.5MB
-
Filesize
4KB
-
Filesize
2.5MB
-
Filesize
4KB