6dc0a9eee24d7842effd001698ad30189d9fff4ce3df3bb5ebbad25fa7de674c

Analysis

max time kernel
92s
max time network
93s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
14/07/2024, 12:33

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe
Size

257KB
MD5

45d45bdf32fd27be787223a901d1ed2e
SHA1

86f337f732fc80637e9288e1de1940ff1375cc0b
SHA256

6dc0a9eee24d7842effd001698ad30189d9fff4ce3df3bb5ebbad25fa7de674c
SHA512

480e77627eef7857855e05f14c41562ec428c7ee6fb76d6a160f41f41ee0ccc460f7a57ba0e2f8517386285ce9e9f6bed6aae59e1d828cfddb4bf21b2a386c2e
SSDEEP

6144:3JRIlVaqz7i5eZu3EMpwa2ZSp14TyQOI5JgpcvqNplc6VtvWe:jIlA50x2JcT0Iw5pHz/

Score

5^/10

Malware Config

Signatures

Suspicious use of SetThreadContext 1 IoCs

description	pid	Process	procid_target
PID 4176 set thread context of 2596	4176	45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe	84

Modifies registry class 3 IoCs

description	ioc	Process
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.key\	45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.key\ = "regfile"	45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\.key	45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
4176	45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe

Suspicious use of WriteProcessMemory 7 IoCs

description	pid	Process	procid_target
PID 4176 wrote to memory of 2596	4176	45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe	84
PID 4176 wrote to memory of 2596	4176	45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe	84
PID 4176 wrote to memory of 2596	4176	45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe	84
PID 4176 wrote to memory of 2596	4176	45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe	84
PID 4176 wrote to memory of 2596	4176	45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe	84
PID 4176 wrote to memory of 2596	4176	45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe	84
PID 4176 wrote to memory of 2596	4176	45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe	84

C:\Users\Admin\AppData\Local\Temp\45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe"
1⤵
- Suspicious use of SetThreadContext
- Modifies registry class
- Suspicious use of SetWindowsHookEx
- Suspicious use of WriteProcessMemory
PID:4176
- C:\Users\Admin\AppData\Local\Temp\45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe
  C:\Users\Admin\AppData\Local\Temp\45d45bdf32fd27be787223a901d1ed2e_JaffaCakes118.exe
  2⤵
  PID:2596

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2596-64-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/2596-63-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/2596-65-0x0000000000400000-0x00000000004083A0-memory.dmp

Filesize
32KB

Download
memory/2596-68-0x0000000000400000-0x0000000000409000-memory.dmp

Filesize
36KB

Download
memory/4176-0-0x0000000000400000-0x00000000004AB000-memory.dmp

Filesize
684KB

Download
memory/4176-2-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download
memory/4176-1-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-4-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download
memory/4176-28-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-27-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-26-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-31-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-38-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-58-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download
memory/4176-61-0x00000000023D0000-0x00000000023D1000-memory.dmp

Filesize
4KB

Download
memory/4176-59-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-57-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-56-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-55-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-67-0x0000000000400000-0x00000000004AB000-memory.dmp

Filesize
684KB

Download
memory/4176-54-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-53-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-52-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-51-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-50-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-49-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-48-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-47-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-46-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-45-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-44-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download
memory/4176-43-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download
memory/4176-42-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download
memory/4176-41-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download
memory/4176-40-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download
memory/4176-39-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download
memory/4176-37-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-36-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-35-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-34-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-33-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-32-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-29-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-30-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-25-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-24-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-23-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-22-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-21-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-20-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-19-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-18-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-17-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-16-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-15-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-14-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-13-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-12-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-11-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-10-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-9-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-8-0x00000000023E0000-0x00000000023E1000-memory.dmp

Filesize
4KB

Download
memory/4176-7-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download
memory/4176-6-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download
memory/4176-5-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download
memory/4176-3-0x00000000023F0000-0x00000000023F1000-memory.dmp

Filesize
4KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads