84f706c28e141557096563b9155855945da51a707990abf055765788110830a0

Analysis

max time kernel
93s
max time network
135s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
22/07/2024, 10:26

Target

62dc84c4193b43982a0bcfb1a79d79d3_JaffaCakes118.exe
Size

1.2MB
MD5

62dc84c4193b43982a0bcfb1a79d79d3
SHA1

a3ac4513fcfe313612badaf943ff4faf8c9a6443
SHA256

84f706c28e141557096563b9155855945da51a707990abf055765788110830a0
SHA512

03db4e64b6e05bd40519849d64d4f3a18ca0d6c8366a199f4989eb9814f95a91626f29a5e820050bb0497d8527b9888a998b0e5bfce219720fa5adf719928cc5
SSDEEP

24576:oeGefCnE7Oduehdi0LHgZpJEdDZSx7kMiyqCe:oeGRE7Osehdi0LHkJEtZI7TiEe

Score

3^/10

Program crash 1 IoCs

pid	pid_target	Process	procid_target
3580	564	WerFault.exe	84

C:\Users\Admin\AppData\Local\Temp\62dc84c4193b43982a0bcfb1a79d79d3_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\62dc84c4193b43982a0bcfb1a79d79d3_JaffaCakes118.exe"
1⤵
PID:564
- C:\Windows\SysWOW64\WerFault.exe
  C:\Windows\SysWOW64\WerFault.exe -u -p 564 -s 544
  2⤵
  - Program crash
  PID:3580

C:\Windows\SysWOW64\WerFault.exe
C:\Windows\SysWOW64\WerFault.exe -pss -s 404 -p 564 -ip 564
1⤵
PID:4840

memory/564-0-0x000000002DD00000-0x000000002DE1A000-memory.dmp

Filesize
1.1MB

Download
memory/564-1-0x000000002DD00000-0x000000002DE1A000-memory.dmp

Filesize
1.1MB

Download