Overview

overview

7

Static

static

1

39bcbd357b...18.exe

windows7-x64

7

39bcbd357b...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    150s
  • max time network
    158s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    11/07/2024, 15:40

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    39bcbd357b511fe8991225a9aab1d78d_JaffaCakes118.exe

  • Size

    1015KB

  • MD5

    39bcbd357b511fe8991225a9aab1d78d

  • SHA1

    3afd52c0a913d5e8a0d0ebfa9e6683ceeaed366d

  • SHA256

    49ae7ec132962b21883395ad5e45502b73d5d0a120d98bcf058ef78240eff671

  • SHA512

    ae7a7361aadbc3dab87ddd71092735d04a13640a39e54e709e3e2273b0dad88d538b60c09decb99015b1c193ee22de8a27a504614de9ac4bbee94f677198cf09

  • SSDEEP

    24576:IZWNSZi5PXjBTc3Ws6gtngeVgbMzMKz9RW94I:IZWNSY5PzBg3W14geVgb3KbI

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Suspicious behavior: EnumeratesProcesses 4 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\39bcbd357b511fe8991225a9aab1d78d_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\39bcbd357b511fe8991225a9aab1d78d_JaffaCakes118.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    • Suspicious use of SetWindowsHookEx
    PID:3456

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\ish240620890\bootstrap_23414.html
          Filesize

          156B

          MD5

          1ea9e5b417811379e874ad4870d5c51a

          SHA1

          a4bd01f828454f3619a815dbe5423b181ec4051c

          SHA256

          f076773a6e3ae0f1cee3c69232779a1aaaf05202db472040c0c8ea4a70af173a

          SHA512

          965c10d2aa5312602153338da873e8866d2782e0cf633befe5a552b770e08abf47a4d2e007cdef7010c212ebcb9fefea5610c41c7ed1553440eaeab7ddd72daa

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\ish240620890\css\main.css
          Filesize

          4KB

          MD5

          ad065ddcb475e0fee8b3d7af283606c7

          SHA1

          5c3e6da8615e4eee0ac701e782c90f5935f15c92

          SHA256

          d6c0a6ca9cb3ee20cda8e406b78083bea495ac49ff556fd7b25d8f3b669e39d5

          SHA512

          ef96d8762657aa19d854b33bebf55a6bd8a9c8f42cb2df13c450982178898e8c1056e3c87f4b0d06575df5384e838a9827a32ffe4cda14163f91ccd223eac19b

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\ish240620890\css\sdk-ui\progress-bar.css
          Filesize

          506B

          MD5

          5335f1c12201b5f7cf5f8b4f5692e3d1

          SHA1

          13807a10369f7ff9ab3f9aba18135bccb98bec2d

          SHA256

          974cd89e64bdaa85bf36ed2a50af266d245d781a8139f5b45d7c55a0b0841dda

          SHA512

          0d4e54d2ffe96ccf548097f7812e3608537b4dae9687816983fddfb73223c196159cc6a39fcdc000784c79b2ced878efbc7a5b5f6e057973bf25b128124510df

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\ish240620890\images\BG01.png
          Filesize

          4KB

          MD5

          1085a8641f0193fdb5bda5a3b763505f

          SHA1

          63458ac56161342f150a6fb98c8961b1ce35bfcf

          SHA256

          ac542cbc6abacf84f7515a073860a96e056d9977ae6631b73badaff96e2d4168

          SHA512

          4afd1121ec22792f67aa2bf2adea509fe7fd55aa2dc24fec2ac2c9709fdd7f6200c1c05204bcfcff6918998d3de36a64a8ccb07d6ba1ef5fe8201bd33decce2e

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\ish240620890\images\Close.png
          Filesize

          286B

          MD5

          cac469bcffdf7b8e7787521171cbcffa

          SHA1

          aee9d687ff8bea0ab5d8c80ba54daafa0c1d8e93

          SHA256

          d22c63f556cab861dbbb993737a6da85241fa80765dcdcc0d70160b1e676a0bd

          SHA512

          4253633f907c680dcd07cf79520fec91d3bf18c21f6c2363899e0649796edb837fcc511ceb542bd8440d2d7324c835dcb93089fa225ce11492499299570d0a97

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\ish240620890\images\Color_Button.png
          Filesize

          463B

          MD5

          de1d3ea9faa550a35649686c2a0711ee

          SHA1

          458b9f4edc07009cc047308b56de343d477eed83

          SHA256

          d616625b470c988c38ef9e184a8481d565d4d3a767665c617656a9625fb804b6

          SHA512

          be49b3faaa1fe93e1f139af520d2a582bd4abe1482f59ed368f0efd9b5dd142f255c67cef34040e3885cfaaa000b4097a9b4ca90438efef52902f6cb6eb618cf

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\ish240620890\images\Gray_Button.png
          Filesize

          426B

          MD5

          d59577505698f80d32c403bccb912aab

          SHA1

          51e23a1ef1b07ca70fd1ad9276f161838fc8b676

          SHA256

          1a2abe6d439da430e7da2ae4e03722b8fe65498d51dfeba03f906aadbb09325d

          SHA512

          558174d1a8ae069269c44f1cf0a81bf29252176f91238f17d9d828b5bf56d2ae17b8a479f98ba56633b39c3a99fad2e10a4e16d24528f4c3e9a48210b298dd69

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\ish240620890\images\ProgressBar.png
          Filesize

          236B

          MD5

          1e1eeb69b60c58b90f2ab8c90661bd90

          SHA1

          9a6395f4960bc958f7093c01c66029c9056eb57b

          SHA256

          fff46a5d61abcb7eb4fd07d513057190153f4c942886a4057983f3c659f82945

          SHA512

          32602dfed1a72856189c1acd955a4135503d081d3d2c4fbf5b70fba5c57b268a37fd6eed979cd6ae659aa9d3bd7117e562c405cc149c3a6a1a43faa451b7a06c

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\ish240620890\images\ProgressBar_element.png
          Filesize

          195B

          MD5

          2fc7f329d0ee1b4da79ffc5854399505

          SHA1

          b7e460ad126797a310cb3b52291c857753c6600b

          SHA256

          faddb8c46cd3e2b526151f2c69f0f698acf9d8ba28e01cb8de1087216ec43f83

          SHA512

          48427a5bf4f7c69845f8b8ddd422bb07d511292280da4a65247fa0417d16607437c8ca407e714a233860a2251ff5692009acbd1ae6a79557427634ceaeb9661f

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\ish240620890\images\Welcome_Color_Button.png
          Filesize

          369B

          MD5

          989cedc5a398839fc56c8434d2df8580

          SHA1

          527d9de85e1728796e3239c899da7361d4c38ac9

          SHA256

          4242b2d8b9da0fffd71f7ae96a1c49d1aab5c9639f2851fd842f414a736252e6

          SHA512

          74327c2a137a214aaee46f7fc6a81bbbf1c2efa660950045e9858514ac279c024fed88cd22badc3b0df8ff8187ca776b0049aee1a4c1e26f2d851d5876fef52c

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\ish240620890\images\loader.gif
          Filesize

          10KB

          MD5

          57ca1a2085d82f0574e3ef740b9a5ead

          SHA1

          2974f4bf37231205a256f2648189a461e74869c0

          SHA256

          476a7b1085cc64de1c0eb74a6776fa8385d57eb18774f199df83fc4d7bbcc24e

          SHA512

          2d50b9095d06ffd15eeeccf0eb438026ca8d09ba57141fed87a60edd2384e2139320fb5539144a2f16de885c49b0919a93690974f32b73654debca01d9d7d55c

          Download Submit

        • C:\Users\Admin\AppData\Local\Temp\ish240620890\images\prod_img.png
          Filesize

          8KB

          MD5

          83cfc30cb34b4b45e1f86170e433f89c

          SHA1

          916228ea52e4ed0147e4addbb5c6e01bb0e03e60

          SHA256

          fa7f1f43f777b88718afaf64ebc2fb350de5b2e3bd957fc0977b73c476a2c9fd

          SHA512

          ad0a5b78c1061a30fbe2f509d24768efd4536640e5c70c4c49c3c338b4191d583f9b70872ce5606265e6200a50ea24e8d77a4e1e22fe6e5b2dc923967ac7ad82

          Download Submit

        • memory/3456-135-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download

        • memory/3456-143-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download

        • memory/3456-0-0x0000000000401000-0x00000000004C6000-memory.dmp

          Filesize

          788KB

          Download

        • memory/3456-136-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download

        • memory/3456-137-0x0000000000401000-0x00000000004C6000-memory.dmp

          Filesize

          788KB

          Download

        • memory/3456-138-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download

        • memory/3456-139-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download

        • memory/3456-140-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download

        • memory/3456-142-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download

        • memory/3456-1-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download

        • memory/3456-144-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download

        • memory/3456-145-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download

        • memory/3456-146-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download

        • memory/3456-147-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download

        • memory/3456-148-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download

        • memory/3456-149-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download

        • memory/3456-150-0x0000000000400000-0x0000000000506000-memory.dmp

          Filesize

          1.0MB

          Download