37f1a840e4570b10fc315fb615d6249a2205cb768a134ecc54281d5f8be411fe

Analysis

max time kernel
148s
max time network
151s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
12/07/2024, 11:43

Target

3d3c304a9a163e741db9638a372a7938_JaffaCakes118.exe
Size

4KB
MD5

3d3c304a9a163e741db9638a372a7938
SHA1

b1b2aff9860911ed2dcf8dda546894c628c8abd4
SHA256

37f1a840e4570b10fc315fb615d6249a2205cb768a134ecc54281d5f8be411fe
SHA512

d958250dbcbacbef5d9e3d84ce197fb5c8907e880b40857a24e2945636bdbf046aa0bb6b7b1cb627dc726839f5cd2e07cf431c547999dbd572ba5b31eed93e1a
SSDEEP

96:X4lse8gEwgw0V5h6lTwPrLsQgpjelloijOochSOSfiKMBcJiyaw5U:XZelowQaZorLJO6loiKch6n2AY5U

Score

5^/10

Drops file in System32 directory 3 IoCs

description	ioc	Process
File created	C:\Windows\SysWOW64\win32k.anr	3d3c304a9a163e741db9638a372a7938_JaffaCakes118.exe
File opened for modification	C:\Windows\SysWOW64\win32k.anr	3d3c304a9a163e741db9638a372a7938_JaffaCakes118.exe
File opened for modification	C:\Windows\SysWOW64\win32k.sys	3d3c304a9a163e741db9638a372a7938_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\3d3c304a9a163e741db9638a372a7938_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\3d3c304a9a163e741db9638a372a7938_JaffaCakes118.exe"
1⤵
- Drops file in System32 directory
PID:4532