Overview

overview

3

Static

static

3

3be38663ff...18.exe

windows7-x64

1

3be38663ff...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    140s
  • max time network
    121s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    12-07-2024 03:50

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3be38663ffce68a023d6f66b14cd68ab_JaffaCakes118.exe

  • Size

    1.3MB

  • MD5

    3be38663ffce68a023d6f66b14cd68ab

  • SHA1

    80ddc171bd38f4c339379280584878642d57e105

  • SHA256

    8e7b12de3b946df79905680076ffb6422178eb2bd98225cef36e440d75e1eaaa

  • SHA512

    0b1e512dae8a6568f573aecadb4d4e1a9b0e98f6679ac7ad723b3ca90161ce4b31a28ca5eb2cb22a9bdaa0f4b4b5b6915cd5b7de905068fd55096cffef0e64de

  • SSDEEP

    12288:TPmWHTBc4snEdl4AT2bq4gLzIMRGgKBOxbNs2o/4tvmnaDOvmnaDGL:Cy7QAT29iLGzBO0x8vmnfvmnX

Score
1/10

Malware Config

Signatures

  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\3be38663ffce68a023d6f66b14cd68ab_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\3be38663ffce68a023d6f66b14cd68ab_JaffaCakes118.exe"
    1⤵
    • Suspicious use of SetWindowsHookEx
    PID:2900

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\cold-steel.ini
    Filesize

    9KB

    MD5

    41c368dd95d190e9f2a5cda107490872

    SHA1

    2fad5621ba2e5da358e43f082715b5c8f79009e4

    SHA256

    cbbd7460f918674817332b833c065d0e232ddc835af85965e3d1ac950412ee5c

    SHA512

    2902f4f77caefc342e0f87f3d804d93f2ec0491c24d67b6989fba48aee0c19ec995622bf6ce4a2dd599680af3f06b66250ee051e0e242dfc8c246ebfd9b9afc4

    Download Submit

  • memory/2900-0-0x0000000000230000-0x0000000000231000-memory.dmp

    Filesize

    4KB

    Download

  • memory/2900-399-0x0000000000400000-0x0000000000556000-memory.dmp

    Filesize

    1.3MB

    Download

  • memory/2900-401-0x0000000000230000-0x0000000000231000-memory.dmp

    Filesize

    4KB

    Download