444d1fe557373c8a60da496974bc36cf34ef0c11f7149a8c4f68f45a683a4834

Analysis

max time kernel
117s
max time network
118s
platform
windows7_x64
resource
win7-20240705-en
resource tags

arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
submitted
15-07-2024 17:30

Target

4aafe538e5c7f31994ac8d762ce97f54_JaffaCakes118.exe
Size

1.5MB
MD5

4aafe538e5c7f31994ac8d762ce97f54
SHA1

481def175ea9fc79313b4b035fb3fe8a77518d42
SHA256

444d1fe557373c8a60da496974bc36cf34ef0c11f7149a8c4f68f45a683a4834
SHA512

87d8b55bd1ec62db952802d18f13659dba6ad25036e93fbdfac7126560c3c70e16ef6dc649672c2a3c3e12851ac8bc2ed44d1d93b8ac2eeba92e1f4b646b2f01
SSDEEP

24576:+CXKun+/j89e4x7D5okrhc1TrvBXEpokGtd5yJM69b:+BulEa7DrTpeD6

Score

1^/10

Suspicious use of SetWindowsHookEx 2 IoCs

pid	Process
2964	4aafe538e5c7f31994ac8d762ce97f54_JaffaCakes118.exe
2964	4aafe538e5c7f31994ac8d762ce97f54_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\4aafe538e5c7f31994ac8d762ce97f54_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\4aafe538e5c7f31994ac8d762ce97f54_JaffaCakes118.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:2964