Analysis
-
max time kernel
150s -
max time network
151s -
platform
windows10-2004_x64 -
resource
win10v2004-20240709-en -
resource tags
-
submitted
16-07-2024 07:24
General
-
Target
4d52810a0390ff496f0feb04c7ec1385_JaffaCakes118.exe
-
Size
320KB
-
MD5
4d52810a0390ff496f0feb04c7ec1385
-
SHA1
0708d998fea7ce92dfd99b9d97b753d4b6c6f9f7
-
SHA256
41ff8c08e0a2e7a051724bc0bfd13b9d9df19fb50f4bf485523c2cc88837ac81
-
SHA512
68dee08ad0c3bf655e90dcb29188b88e42a34241d8395664443ca5c3cfb842ccb07c2a8dfd2e126cdf3dba3a893bf31358d2a69b6f4fdbe00cf1488324ee4c77
-
SSDEEP
6144:26lXsWG6puLQsLOLZDdiSVjmC6SEIg4M:26dsc8L3LOLdfiI4
Malware Config
Signatures
-
Checks installed software on the system 1 TTPs
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).
Processes
-
C:\Users\Admin\AppData\Local\Temp\4d52810a0390ff496f0feb04c7ec1385_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\4d52810a0390ff496f0feb04c7ec1385_JaffaCakes118.exe"1⤵
Network
MITRE ATT&CK Matrix ATT&CK v13
Replay Monitor
Loading Replay Monitor...
Downloads
-
C:\Users\Admin\AppData\Roaming\GetBot\getbot.exeFilesize
320KB
MD54d52810a0390ff496f0feb04c7ec1385
SHA10708d998fea7ce92dfd99b9d97b753d4b6c6f9f7
SHA25641ff8c08e0a2e7a051724bc0bfd13b9d9df19fb50f4bf485523c2cc88837ac81
SHA51268dee08ad0c3bf655e90dcb29188b88e42a34241d8395664443ca5c3cfb842ccb07c2a8dfd2e126cdf3dba3a893bf31358d2a69b6f4fdbe00cf1488324ee4c77