1ac6a82267bc3da4470794477a2143e1a230d38a14ff0fbc358636325ee4afb3

Analysis

max time kernel
15s
max time network
21s
platform
windows7_x64
resource
win7-20240704-en
resource tags

arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
submitted
15-07-2024 12:00

Target

49afeb9e98e070c8dce9816dd32a72b2_JaffaCakes118.exe
Size

998KB
MD5

49afeb9e98e070c8dce9816dd32a72b2
SHA1

66a15210e175a0f31b039a3185756dbc46e97dff
SHA256

1ac6a82267bc3da4470794477a2143e1a230d38a14ff0fbc358636325ee4afb3
SHA512

bfb256a538d9976b00f9bb717e4ec229a561dbc8ba619eaef8fa34d4aaf18db2cd76604e6c71650794162434787af41b04a8523e538c912dab95fb2313822ecd
SSDEEP

24576:eWGDhRzUF8FT2fkyr4H2s5vLb5gd9AvHZ7zYbt4g6GyI:eWezzwfkykWs535gdKlYbt4hI

Score

4^/10

Drops file in Windows directory 7 IoCs

description	ioc	Process
File created	C:\Windows\AVGuP.exe	49afeb9e98e070c8dce9816dd32a72b2_JaffaCakes118.exe
File opened for modification	C:\Windows\AVGuP.exe	49afeb9e98e070c8dce9816dd32a72b2_JaffaCakes118.exe
File created	C:\Windows\ATTRIB.exe	49afeb9e98e070c8dce9816dd32a72b2_JaffaCakes118.exe
File opened for modification	C:\Windows\ATTRIB.exe	49afeb9e98e070c8dce9816dd32a72b2_JaffaCakes118.exe
File created	C:\Windows\AVGs.exe	49afeb9e98e070c8dce9816dd32a72b2_JaffaCakes118.exe
File opened for modification	C:\Windows\AVGs.exe	49afeb9e98e070c8dce9816dd32a72b2_JaffaCakes118.exe
File created	C:\Windows\__tmp_rar_sfx_access_check_259515572	49afeb9e98e070c8dce9816dd32a72b2_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\49afeb9e98e070c8dce9816dd32a72b2_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\49afeb9e98e070c8dce9816dd32a72b2_JaffaCakes118.exe"
1⤵
- Drops file in Windows directory
PID:2960

memory/2960-6-0x0000000000400000-0x0000000000426000-memory.dmp

Filesize
152KB

Download