db8140e5d64a2da2d39a9bf10284af7e9e35a0dea7de118427d002ff1aa34784

Analysis

max time kernel
150s
max time network
150s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
15/07/2024, 22:34

Target

4bb21f4f8a9e95e65ef9592dcd7e43f5_JaffaCakes118.exe
Size

73KB
MD5

4bb21f4f8a9e95e65ef9592dcd7e43f5
SHA1

89d56af33f39afb6741144a286b9088ea9eedba7
SHA256

db8140e5d64a2da2d39a9bf10284af7e9e35a0dea7de118427d002ff1aa34784
SHA512

a0c51c6a6f65212120e16c8c12042e152e418c0d3f1a9ce2ffd9893bf9dfc5450fe4b2d6831e60450f2770d1bd2512f1ef9cea4619bc69276bfa470989080ce5
SSDEEP

1536:Mc+mLXKWM0XFFnbgGx02Bris2jwyKuyy119MwcnBX4bAXIEO5:M8LnLnLxprC87xBX4UXIJ

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
1148	4644	WerFault.exe	82

C:\Users\Admin\AppData\Local\Temp\4bb21f4f8a9e95e65ef9592dcd7e43f5_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\4bb21f4f8a9e95e65ef9592dcd7e43f5_JaffaCakes118.exe"
1⤵
PID:4644
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 4644 -s 228
  2⤵
  - Program crash
  PID:1148

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 4644 -ip 4644
1⤵
PID:3744

memory/4644-0-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download
memory/4644-1-0x0000000000400000-0x0000000000414000-memory.dmp

Filesize
80KB

Download