2d222fd6739b7bde4628c248e73e8fa6e6b3f55011098ad6d495fbb1a18a7d11 | Triage

Submit
Reports

Overview

overview

3

Static

static

3

3c89e65f0e...18.exe

windows7-x64

3

3c89e65f0e...18.exe

windows10-2004-x64

3

$0/basicscan.dll

windows7-x64

1

$0/basicscan.dll

windows10-2004-x64

1

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

Analysis

max time kernel
93s
max time network
95s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
12/07/2024, 07:48

Sharing

Copy URL Twitter E-mail

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

3c89e65f0e4cc60b57500f0965dea2a2_JaffaCakes118.exe

Resource

win7-20240708-en

windows7-x64

1 signatures

150 seconds

Behavioral task

behavioral2

Sample

3c89e65f0e4cc60b57500f0965dea2a2_JaffaCakes118.exe

Resource

win10v2004-20240709-en

windows10-2004-x64

1 signatures

150 seconds

Behavioral task

behavioral3

Sample

$0/basicscan.dll

Resource

win7-20240708-en

windows7-x64

0 signatures

150 seconds

Behavioral task

behavioral4

Sample

$0/basicscan.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

0 signatures

150 seconds

Behavioral task

behavioral5

Sample

$PLUGINSDIR/InstallOptions.dll

Resource

win7-20240705-en

windows7-x64

2 signatures

150 seconds

Behavioral task

behavioral6

Sample

$PLUGINSDIR/InstallOptions.dll

Resource

win10v2004-20240709-en

windows10-2004-x64

2 signatures

150 seconds

Report Analysis Logs

General

Target

3c89e65f0e4cc60b57500f0965dea2a2_JaffaCakes118.exe
Size

577KB
MD5

3c89e65f0e4cc60b57500f0965dea2a2
SHA1

2527e6c21f8fcdad4654c1e562f4b503d3e18e62
SHA256

2d222fd6739b7bde4628c248e73e8fa6e6b3f55011098ad6d495fbb1a18a7d11
SHA512

e7f51a7b39e2d2f77a642f2519d309474b2f18efa74e9812e894f0ac2a663ff7fa05f76fa833dabe5126030c281f3c51745295034deefd362d5c2970a618ec5c
SSDEEP

12288:pM4jzG64LYfe33QZjVJGnRHRYvxssCoE6IvlW5rRuwnKtgUXHq:pM4jD4LYe33QST6Co7jNRuwnKtgUXK

Score

3^/10

Malware Config

Signatures

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

Processes

C:\Users\Admin\AppData\Local\Temp\3c89e65f0e4cc60b57500f0965dea2a2_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\3c89e65f0e4cc60b57500f0965dea2a2_JaffaCakes118.exe"
1⤵
PID:4940

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

© 2018-2025

Terms | Privacy