703d6cc43bbecab62751f9dc2d4eb5b39e61d023d29308555e1b84f137113135

Analysis

max time kernel
140s
max time network
124s
platform
windows10-2004_x64
resource
win10v2004-20240704-en
resource tags

arch:x64arch:x86image:win10v2004-20240704-enlocale:en-usos:windows10-2004-x64system
submitted
15/07/2024, 05:22

Target

486531a3f15293e1a403d6d2933e306e_JaffaCakes118.exe
Size

339KB
MD5

486531a3f15293e1a403d6d2933e306e
SHA1

ec217b06d5ab7dea19b07b5c1c490ca7a5ee7ec6
SHA256

703d6cc43bbecab62751f9dc2d4eb5b39e61d023d29308555e1b84f137113135
SHA512

ce152552deac6e0551cc5b2c8589359df104bc7e742df078e4dd2cb9fe3a802bf8b8f6a3156d68a250101a8f2ac83475897d81927b4fedd8cb606813060b1e19
SSDEEP

6144:88f2v0ZHaBofP94tM7PmpJnm9hasUsgpOoPDGoqmLF0msCs9dcKocq1:5k0o2P94ObImb8LPqKJ0msKEe

Score

3^/10

Program crash 2 IoCs

pid	pid_target	Process	procid_target
1264	3776	WerFault.exe	82
3104	3776	WerFault.exe	82

C:\Users\Admin\AppData\Local\Temp\486531a3f15293e1a403d6d2933e306e_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\486531a3f15293e1a403d6d2933e306e_JaffaCakes118.exe"
1⤵
PID:3776
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3776 -s 540
  2⤵
  - Program crash
  PID:1264
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 3776 -s 548
  2⤵
  - Program crash
  PID:3104

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 3776 -ip 3776
1⤵
PID:1812

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 184 -p 3776 -ip 3776
1⤵
PID:1160

memory/3776-0-0x0000000001000000-0x00000000014B4000-memory.dmp

Filesize
4.7MB

Download
memory/3776-1-0x0000000001000000-0x00000000014B4000-memory.dmp

Filesize
4.7MB

Download