Overview

overview

3

Static

static

3

3d1440c830...18.exe

windows7-x64

1

3d1440c830...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    119s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    12/07/2024, 10:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3d1440c8300bf87f3b47a6a6649829c3_JaffaCakes118.exe

  • Size

    64KB

  • MD5

    3d1440c8300bf87f3b47a6a6649829c3

  • SHA1

    7f940a75bb45abdf2cede2ffb4977a028dc8a9a2

  • SHA256

    fff7f9fa576f18b505a9cbaf77641a1fbcff21d5e0969dd336f518972af6330f

  • SHA512

    f05457abe3d842203879ba9cf8e7034c1e01e75169f7c1169b3c866ce53017812c31b36aa1aee7f533fae4a634211a086069628f490d09161875b773b0afe252

  • SSDEEP

    768:hBsypoWmwu+xxDqRQAfTFFLffkYs/g79W7iJzl627SLt8gLOU2FHD+mJ3VseN5C1:/BoWdHaDLw7iJvu+gFEJah1B+ILaxSqU

Score
1/10

Malware Config

Signatures

  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\3d1440c8300bf87f3b47a6a6649829c3_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\3d1440c8300bf87f3b47a6a6649829c3_JaffaCakes118.exe"
    1⤵
    • Suspicious use of WriteProcessMemory
    PID:2388
    • C:\Windows\SysWOW64\cmd.exe
      cmd.exe /c C:\Users\Admin\AppData\Local\Temp\bt65447.bat "C:\Users\Admin\AppData\Local\Temp\3d1440c8300bf87f3b47a6a6649829c3_JaffaCakes118.exe"
      2⤵
        PID:1740

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • C:\Users\Admin\AppData\Local\Temp\bt65447.bat
      Filesize

      80B

      MD5

      3b1855ed91eed13cdd9cfe7ef18dd3bf

      SHA1

      75751f8a30d5e746c25a023def7b1ce0b71e5b89

      SHA256

      3e106256a402c521862a3125771994e4e1c23ef17e36dc0b572cbceb724ffc94

      SHA512

      c19ad647e58a06271d914a85e53f90f7ba89f3f2e3b95d6f0b7946b6a291d6366c56198693b0743d8344377799d57662616381eb247ecad35480f6daa99912b4

      Download Submit

    • memory/1740-13-0x0000000000390000-0x0000000000391000-memory.dmp

      Filesize

      4KB

      Download

    • memory/2388-35-0x0000000000400000-0x000000000041A000-memory.dmp

      Filesize

      104KB

      Download

    • memory/2388-56-0x0000000000400000-0x000000000041A000-memory.dmp

      Filesize

      104KB

      Download