Overview

overview

5

Static

static

3

4805e90a90...18.exe

windows7-x64

5

4805e90a90...18.exe

windows10-2004-x64

5

Analysis

  • max time kernel
    150s
  • max time network
    120s
  • platform
    windows7_x64
  • resource
    win7-20240705-en
  • resource tags

    arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
  • submitted
    15/07/2024, 03:30

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    4805e90a901eb894fe640ca4abfb0911_JaffaCakes118.exe

  • Size

    2.4MB

  • MD5

    4805e90a901eb894fe640ca4abfb0911

  • SHA1

    bb219c7d028c6ea23eba61ecc574d2f29576ae49

  • SHA256

    d13477a48b023d312b49ddb17b67955dbfb979232e3b91ee1e20dd536f5d59d0

  • SHA512

    dd25bae821e6d31dfac11d7a2fdb3a6553876ab8cb2bd7f3b69a32da3e2bdfc622c5ac073f1594444997bc502f36cb46f14573c5d60c6d2aefb4fe000b1b88e5

  • SSDEEP

    49152:CSx7EmVU+YzANv0HNOEeTTJfyg5Q9VGqVn16bB2:CSx7VOANcGfyMQ9Lx16bB2

Score
5/10

Malware Config

Signatures

  • Suspicious use of NtSetInformationThreadHideFromDebugger 64 IoCs
  • Suspicious use of SetWindowsHookEx 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\4805e90a901eb894fe640ca4abfb0911_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\4805e90a901eb894fe640ca4abfb0911_JaffaCakes118.exe"
    1⤵
    • Suspicious use of NtSetInformationThreadHideFromDebugger
    • Suspicious use of SetWindowsHookEx
    PID:2080

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2080-0-0x0000000000400000-0x0000000000669000-memory.dmp

    Filesize

    2.4MB

    Download

  • memory/2080-1-0x0000000002090000-0x0000000002211000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/2080-3-0x0000000075580000-0x00000000755C7000-memory.dmp

    Filesize

    284KB

    Download

  • memory/2080-12-0x00000000778D0000-0x00000000778E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2080-910-0x0000000002090000-0x0000000002211000-memory.dmp

    Filesize

    1.5MB

    Download

  • memory/2080-911-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-913-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-914-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-924-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-916-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-918-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-938-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-920-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-922-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-926-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-928-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-930-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-932-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-934-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-940-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-944-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-946-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-948-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-942-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-936-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-950-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-952-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-958-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-956-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-954-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-962-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-964-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-966-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-970-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-972-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-968-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-960-0x0000000002230000-0x0000000002331000-memory.dmp

    Filesize

    1.0MB

    Download

  • memory/2080-3892-0x00000000778D0000-0x00000000778E0000-memory.dmp

    Filesize

    64KB

    Download

  • memory/2080-3893-0x0000000002090000-0x0000000002211000-memory.dmp

    Filesize

    1.5MB

    Download