Overview

overview

5

Static

static

3

4102a02e5f...18.exe

windows7-x64

5

4102a02e5f...18.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    16s
  • max time network
    17s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    13/07/2024, 08:53

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    4102a02e5f9615f0fc92e3d722eaaa46_JaffaCakes118.exe

  • Size

    140KB

  • MD5

    4102a02e5f9615f0fc92e3d722eaaa46

  • SHA1

    c0be7cbb57916477f7fa0bf752112d28390481db

  • SHA256

    f2a07af7cc4c15e1bd56c613d82bba25f7cb7c4c5286e374a77629df4e07184c

  • SHA512

    da86faa95fe132ae5c2326761c45bd8963c57687773d50187bcfd8f3b262a754f51d38a411e0442402ed1d996c7337ed93d0a9ef090dd641e91690e142ed41fb

  • SSDEEP

    3072:40sub51hn5w2xZDjjpxYp+Deb19aufeJ3:409514Ud+4ufeJ3

Score
5/10

Malware Config

Signatures

  • Drops file in System32 directory 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\4102a02e5f9615f0fc92e3d722eaaa46_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\4102a02e5f9615f0fc92e3d722eaaa46_JaffaCakes118.exe"
    1⤵
    • Drops file in System32 directory
    • Suspicious use of SetWindowsHookEx
    PID:2536

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • C:\Users\Admin\AppData\Local\Temp\km5q\tmp.exe
          Filesize

          148KB

          MD5

          24ac2c0999e0bc8a784d7190302accf5

          SHA1

          38d17997615fd4475dbfde67f507c48af9c3e5db

          SHA256

          e3a481b72192bf8ac19323faddf04082a52c0e8cdd1abd3ccb0dff3ecbc4da2c

          SHA512

          fbe392191028e4addc9dd639930ef6e00d43045bc0551f262dc0c869570205c67841840b828e82b88c5dd3a116a048f4eb08ae5a988045b6ade1d5ecfaf9ecac

          Download Submit