cd7676da552093665fa916d9412a9aaca05024f5ea3801ed11697906a796c27d

Analysis

max time kernel
14s
max time network
19s
platform
windows7_x64
resource
win7-20240704-en
resource tags

arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
submitted
19/07/2024, 02:11

Target

5a0d049b29a9b6ebcb38a608497e0dbb_JaffaCakes118.exe
Size

174KB
MD5

5a0d049b29a9b6ebcb38a608497e0dbb
SHA1

411f12c079626edea7ac9c5bd7e13b8c63df5dea
SHA256

cd7676da552093665fa916d9412a9aaca05024f5ea3801ed11697906a796c27d
SHA512

0de42537882d956d6f481978ac6c7eda59e9eb5fa4f40f0f235f5fc5c5effe418fe49b8f799ad3b5995b18a02710914561f01f923d7ea86331ef4cf507330a48
SSDEEP

3072:W0s00T8UBb3NIGbVcnk4TGIS1nvxONJdvdxUHe8kroN7TbLFh6Pqg1EDvoDU:jszT8M7bcZ1SRxOhMeJO7XLbwqKEDvoY

Score

1^/10

Suspicious behavior: GetForegroundWindowSpam 1 IoCs

pid	Process
708	5a0d049b29a9b6ebcb38a608497e0dbb_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\5a0d049b29a9b6ebcb38a608497e0dbb_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\5a0d049b29a9b6ebcb38a608497e0dbb_JaffaCakes118.exe"
1⤵
- Suspicious behavior: GetForegroundWindowSpam
PID:708

memory/708-0-0x0000000000403000-0x0000000000407000-memory.dmp

Filesize
16KB

Download
memory/708-1-0x0000000000400000-0x000000000045D000-memory.dmp

Filesize
372KB

Download
memory/708-2-0x0000000000400000-0x000000000045D000-memory.dmp

Filesize
372KB

Download
memory/708-3-0x00000000002E0000-0x00000000002E1000-memory.dmp

Filesize
4KB

Download
memory/708-5-0x00000000002E0000-0x00000000002E1000-memory.dmp

Filesize
4KB

Download
memory/708-8-0x0000000000403000-0x0000000000407000-memory.dmp

Filesize
16KB

Download
memory/708-7-0x0000000000400000-0x000000000045D000-memory.dmp

Filesize
372KB

Download