e594c905f68bf9da8cfa98579ff029e2efa643737d98b3a312de9d250dd1ffb9

Analysis

max time kernel
140s
max time network
138s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
19/07/2024, 01:48

Target

59fb4f0219ccebde347a01307faa8ece_JaffaCakes118.exe
Size

956KB
MD5

59fb4f0219ccebde347a01307faa8ece
SHA1

60f6db4fe614c8012cef99b643ea7eab1f5b96c4
SHA256

e594c905f68bf9da8cfa98579ff029e2efa643737d98b3a312de9d250dd1ffb9
SHA512

15b0f3aaed4f75edffdf2d20707dcba461bcbd411c832f7cc3b0c87a8c16a275e9b74d1bd34e9c1b9b0db44f64930dd48abf6f2fc827c965e6fb964f37e251b6
SSDEEP

24576:Qs+Y9xPzu02VOE96LHD2MzM9zhQ7xAXPL:uY9hzu0cJQHMrBXPL

Score

1^/10

Suspicious use of SetWindowsHookEx 1 IoCs

pid	Process
4880	59fb4f0219ccebde347a01307faa8ece_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\59fb4f0219ccebde347a01307faa8ece_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\59fb4f0219ccebde347a01307faa8ece_JaffaCakes118.exe"
1⤵
- Suspicious use of SetWindowsHookEx
PID:4880

memory/4880-0-0x0000000000400000-0x00000000004B0000-memory.dmp

Filesize
704KB

Download
memory/4880-3-0x0000000000400000-0x00000000004B0000-memory.dmp

Filesize
704KB

Download