Overview

overview

3

Static

static

1

47977ee493...18.jad

windows7-x64

3

47977ee493...18.jad

windows10-2004-x64

3

Analysis

  • max time kernel
    149s
  • max time network
    150s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240704-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
  • submitted
    15/07/2024, 01:11

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    47977ee4935e70998688441ef3d12bd7_JaffaCakes118.jad

  • Size

    492KB

  • MD5

    47977ee4935e70998688441ef3d12bd7

  • SHA1

    f1226ef01bfbef7b133c567310b114fc8cf2c327

  • SHA256

    3401b413d055ce214897c71bb6513bfa3e27bafc5c331dbf8994ad02ec066dcd

  • SHA512

    aa8dadc7f1d6f9b247feb756fe9eac49607325796af3b584438b9721e14a31b1aaf1624d6028a0b681f4e22b8c56bba4d400a1051b2742c4b91acfc328f5e673

  • SSDEEP

    12288:VdeG7gAMBgcHiro/VYLbHtuWNXxu8KGdHwLT3i4p:VIG7gRBgcHiroVYLbH0WTKswLT3z

Score
3/10

Malware Config

Signatures

  • Enumerates physical storage devices 1 TTPs

    Attempts to interact with connected storage/optical drive(s).

  • Modifies registry class 2 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Windows\system32\cmd.exe
    cmd /c C:\Users\Admin\AppData\Local\Temp\47977ee4935e70998688441ef3d12bd7_JaffaCakes118.jad
    1⤵
    • Modifies registry class
    PID:3684
  • C:\Windows\system32\OpenWith.exe
    C:\Windows\system32\OpenWith.exe -Embedding
    1⤵
    • Modifies registry class
    • Suspicious use of SetWindowsHookEx
    PID:4952

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads