Analysis

  • max time kernel
    121s
  • max time network
    122s
  • platform
    windows7_x64
  • resource
    win7-20240708-en
  • resource tags

    arch:x64arch:x86image:win7-20240708-enlocale:en-usos:windows7-x64system
  • submitted
    19/07/2024, 09:02

General

  • Target

    5b44dfbf529bfb42e3f548d3b5ca4991_JaffaCakes118.exe

  • Size

    2.4MB

  • MD5

    5b44dfbf529bfb42e3f548d3b5ca4991

  • SHA1

    abfd6701bf5fbcf325799d715cffc991f9d23877

  • SHA256

    06bab9f11f25b3dd9073c4a4c7d266bf908eed049573d378fcc27a56dd8a5207

  • SHA512

    f38f36ef85c8709020983c2baaa263189a113c995f5037fa53d2bf2101e5bf116208c28ae3b2f19cc1dac1d232927b1825e291d784cbeace4fbac575b2238f8e

  • SSDEEP

    49152:bLYhwtZv800UqS916HKO1TFCidOMIp8rF5PS/NSz0EGuCt00Aj9g8m:YePKS9M5o2x5PTCdgq

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: EnumeratesProcesses 2 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\5b44dfbf529bfb42e3f548d3b5ca4991_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\5b44dfbf529bfb42e3f548d3b5ca4991_JaffaCakes118.exe"
    1⤵
    • Suspicious behavior: EnumeratesProcesses
    PID:2504

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\Local\Temp\popcfg2\files.cab

    Filesize

    2.2MB

    MD5

    ebb4a2daaf608f0312ac4cea869ec0ab

    SHA1

    be791d24a0375ad10806b1bcf428effca4ff73a1

    SHA256

    49fd0a66bb37919719e6d4ee8b2cdf5453f3e79c1689083a8e5c49db5cd0b4ee

    SHA512

    1e530c18788782ded91d633b5d03bbe637d3f2f675d6dabd5e9f11979ae84c293ea8a6eb7c02965a578df8355bfad17db87209fa8b0ad41b824e1ccf4d2d7404