Overview

overview

3

Static

static

3

486f8d74ae...18.exe

windows7-x64

3

486f8d74ae...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    94s
  • max time network
    142s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    15-07-2024 05:35

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    486f8d74aeb2347669c6ca15d14f6ffd_JaffaCakes118.exe

  • Size

    56KB

  • MD5

    486f8d74aeb2347669c6ca15d14f6ffd

  • SHA1

    2a423150b7de4ac4ef2ab5a1dffe8ebd2a15277f

  • SHA256

    cc6a49624d80c39a790acf58d0b4a2015b772ead0af85293c2cfa5ba95237a8c

  • SHA512

    941f0256df4f19d6fa2224f0f38cc8a6afe05cba32390d39abeaca368ee214d4524558043e23a550cb040af76809b7c8e44afb8d5e88adbbcc66d663ef44833b

  • SSDEEP

    768:kqGs2FUmv/q3Y1DwVhAiiTioYRVRjvRfykSMLNArM0jSwM3h+hO5W5NmCWcfL3MK:kq7muA1SRpfeMhArbSwyaUM

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\486f8d74aeb2347669c6ca15d14f6ffd_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\486f8d74aeb2347669c6ca15d14f6ffd_JaffaCakes118.exe"
    1⤵
      PID:960
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 960 -s 372
        2⤵
        • Program crash
        PID:4328
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 960 -ip 960
      1⤵
        PID:2052

      Network

      MITRE ATT&CK Matrix

      Replay Monitor

      Loading Replay Monitor...

      Downloads

      • memory/960-0-0x0000000002160000-0x0000000002164000-memory.dmp

        Filesize

        16KB

        Download