Overview

overview

5

Static

static

3

3df35dd59c...18.exe

windows7-x64

1

3df35dd59c...18.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    95s
  • max time network
    125s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    12/07/2024, 15:35

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    3df35dd59c4695b630503c5058796272_JaffaCakes118.exe

  • Size

    183KB

  • MD5

    3df35dd59c4695b630503c5058796272

  • SHA1

    e80209a854f473d66099e460f5a1232478c9a9e9

  • SHA256

    5893719dace8a642a9dc04a6246047953585ab08c09042807c9e0a0b7d37a9e9

  • SHA512

    f00ae54beca001311663c21e0ea369aca5615eb2d035c1aa7951e9f8f6f28eb123de9115982dc4d8403eee8e6739eca98e87a74c793a6c0017b500790c3357ba

  • SSDEEP

    3072:yuibkNi5CABKSTnnKMAH6UFI0jzWUqkgi6wvVUVZ7Adw3JnJ7gjhdio:yuRU5CwKanrZUbzWVkguiYgJhohwo

Score
5/10

Malware Config

Signatures

  • Drops file in System32 directory 1 IoCs
  • Drops file in Windows directory 4 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\3df35dd59c4695b630503c5058796272_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\3df35dd59c4695b630503c5058796272_JaffaCakes118.exe"
    1⤵
    • Drops file in System32 directory
    • Drops file in Windows directory
    • Suspicious use of SetWindowsHookEx
    PID:324

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\ProgramData\Microsoft\Windows\Start Menu\Programs\½Ç½Ã°£ ȯÀü Æ÷Ä¿.url
          Filesize

          123B

          MD5

          66e0d2d028d9d7f4b341521f499ec8db

          SHA1

          8e4d903d9bed0d90639183f9845ec449d4011c32

          SHA256

          c5ff180ce8927e9793b655359447471e17b703b8bce65d4c54647790af7aa9e5

          SHA512

          914e345c9700539afdf344c6f1de4ff186a885d81b00a56fd151fcf489d141f5e4b158c1a278b2998a77f6f65a8858253c1b872796e640db463608f8de39f6fa

          Download Submit

        • memory/324-0-0x0000000000400000-0x000000000042F000-memory.dmp

          Filesize

          188KB

          Download

        • memory/324-12-0x0000000000400000-0x000000000042F000-memory.dmp

          Filesize

          188KB

          Download