e1fd6843b2894baef428384ac3962822e0607e275f8eb2690cb8d5534534070f

Analysis

max time kernel
118s
max time network
123s
platform
windows7_x64
resource
win7-20240708-en
resource tags

arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
submitted
15/07/2024, 18:32 UTC

Target

4ae3ec04c9bc3878fc1a961efa37f3c5_JaffaCakes118.exe
Size

52KB
MD5

4ae3ec04c9bc3878fc1a961efa37f3c5
SHA1

a953535cc9cb89d8fc04da8bc0e0d4ef954c2d9c
SHA256

e1fd6843b2894baef428384ac3962822e0607e275f8eb2690cb8d5534534070f
SHA512

b7f623475b26adc3f868e4f69f445fd6c0e8ce57eb195d74f4d0e5ce80dbe5473e6f5a33df435a74bb23ffbc22c766c5d79a1f2ef584f02f356df96331397455
SSDEEP

768:lNVlthGu65Wk/MXlgc/E7S1eq7Rgm7Q7I9ppqAAO9Ud3wknHq4OXxAiTDXr:lzltRfrM9qO/CmAA3NnonDX

Score

1^/10

Suspicious behavior: EnumeratesProcesses 1 IoCs

pid	Process
1176	4ae3ec04c9bc3878fc1a961efa37f3c5_JaffaCakes118.exe

Suspicious behavior: MapViewOfSection 2 IoCs

pid	Process
1176	4ae3ec04c9bc3878fc1a961efa37f3c5_JaffaCakes118.exe
1176	4ae3ec04c9bc3878fc1a961efa37f3c5_JaffaCakes118.exe

Suspicious behavior: RenamesItself 1 IoCs

pid	Process
1176	4ae3ec04c9bc3878fc1a961efa37f3c5_JaffaCakes118.exe

memory/1176-1-0x0000000000400000-0x0000000000410000-memory.dmp

Filesize
64KB

Download
memory/1176-0-0x0000000000401000-0x000000000040E000-memory.dmp

Filesize
52KB

Download