1cae15a18a7097b11a3db2d019f30fa3759cb142afd56155b23cdf1371b87561

Analysis

max time kernel
93s
max time network
149s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
15/07/2024, 11:26

Target

49936cc2fc4ad4cbbeefa27744a0d6f6_JaffaCakes118.exe
Size

436KB
MD5

49936cc2fc4ad4cbbeefa27744a0d6f6
SHA1

2dd555c5ec5de3e7e9032368305f7b29962c35f2
SHA256

1cae15a18a7097b11a3db2d019f30fa3759cb142afd56155b23cdf1371b87561
SHA512

71d0e6f5c36001f19e5ce6818a28cedb2e853abc7aa04c1118aff29b7c1e00f472af63c0879b24398f41e33fa29c5ceaf6df81a14df94082dc8a55937934a6c2
SSDEEP

3072:nCEQrk6RwgdcwSfJ1fg0HiIz+jZwzirCV3GiAvS4F55sHrc7vdpU3RZ:Zs/sHrc7XU

Score

5^/10

Suspicious use of SetThreadContext 1 IoCs

description	pid	Process
PID 3148 set thread context of 0	3148	49936cc2fc4ad4cbbeefa27744a0d6f6_JaffaCakes118.exe

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
3148	49936cc2fc4ad4cbbeefa27744a0d6f6_JaffaCakes118.exe

Suspicious use of WriteProcessMemory 5 IoCs

description	pid	Process
PID 3148 wrote to memory of 0	3148	49936cc2fc4ad4cbbeefa27744a0d6f6_JaffaCakes118.exe
PID 3148 wrote to memory of 0	3148	49936cc2fc4ad4cbbeefa27744a0d6f6_JaffaCakes118.exe
PID 3148 wrote to memory of 0	3148	49936cc2fc4ad4cbbeefa27744a0d6f6_JaffaCakes118.exe
PID 3148 wrote to memory of 0	3148	49936cc2fc4ad4cbbeefa27744a0d6f6_JaffaCakes118.exe
PID 3148 wrote to memory of 0	3148	49936cc2fc4ad4cbbeefa27744a0d6f6_JaffaCakes118.exe