4b56e349a82943922c588435161b3cbb3fc2655cff4784f066e8f4da16ca537d

Analysis

max time kernel
143s
max time network
136s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
22-07-2024 11:29

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

630d04abfffc91df7d91e47d2b9afd81_JaffaCakes118.exe
Size

237KB
MD5

630d04abfffc91df7d91e47d2b9afd81
SHA1

81a5b7e13dbde7df269dc5b44cd0a28ca5260452
SHA256

4b56e349a82943922c588435161b3cbb3fc2655cff4784f066e8f4da16ca537d
SHA512

87743873ce0fa70114a301901c480ee23f3b03f6b546c51404b4f1d931bcc9190436f00fc70c0b71b9690312f834e969c340374d848bd8a52a63568bf4757c3b
SSDEEP

6144:Um7bY+WaQZPiI0FR/sJwvP6bQ7yMP+DE827IW3u2Z:TbJuPinT6b7MP+Dd2dea

Score

4^/10

Malware Config

Signatures

Drops file in Windows directory 1 IoCs

description	ioc	Process
File created	C:\Windows\svchost.exe	630d04abfffc91df7d91e47d2b9afd81_JaffaCakes118.exe

Modifies registry class 3 IoCs

description	ioc	Process
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.key\	630d04abfffc91df7d91e47d2b9afd81_JaffaCakes118.exe
Set value (str)	\REGISTRY\MACHINE\SOFTWARE\Classes\.key\ = "regfile"	630d04abfffc91df7d91e47d2b9afd81_JaffaCakes118.exe
Key created	\REGISTRY\MACHINE\SOFTWARE\Classes\.key	630d04abfffc91df7d91e47d2b9afd81_JaffaCakes118.exe

C:\Users\Admin\AppData\Local\Temp\630d04abfffc91df7d91e47d2b9afd81_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\630d04abfffc91df7d91e47d2b9afd81_JaffaCakes118.exe"
1⤵
- Drops file in Windows directory
- Modifies registry class
PID:4560

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/4560-0-0x0000000000400000-0x0000000000474000-memory.dmp

Filesize
464KB

Download
memory/4560-1-0x0000000000600000-0x0000000000630000-memory.dmp

Filesize
192KB

Download
memory/4560-2-0x0000000000630000-0x0000000000632000-memory.dmp

Filesize
8KB

Download
memory/4560-3-0x00000000005F0000-0x00000000005F3000-memory.dmp

Filesize
12KB

Download
memory/4560-11-0x0000000002380000-0x0000000002381000-memory.dmp

Filesize
4KB

Download
memory/4560-14-0x00000000023A0000-0x00000000023A1000-memory.dmp

Filesize
4KB

Download
memory/4560-13-0x00000000023B0000-0x00000000023B1000-memory.dmp

Filesize
4KB

Download
memory/4560-5-0x0000000002300000-0x0000000002301000-memory.dmp

Filesize
4KB

Download
memory/4560-12-0x00000000023C0000-0x00000000023C1000-memory.dmp

Filesize
4KB

Download
memory/4560-10-0x0000000002390000-0x0000000002391000-memory.dmp

Filesize
4KB

Download
memory/4560-9-0x0000000002320000-0x0000000002321000-memory.dmp

Filesize
4KB

Download
memory/4560-8-0x0000000002330000-0x0000000002331000-memory.dmp

Filesize
4KB

Download
memory/4560-7-0x0000000002360000-0x0000000002361000-memory.dmp

Filesize
4KB

Download
memory/4560-6-0x0000000002370000-0x0000000002371000-memory.dmp

Filesize
4KB

Download
memory/4560-4-0x0000000002310000-0x0000000002311000-memory.dmp

Filesize
4KB

Download
memory/4560-15-0x0000000000400000-0x0000000000474000-memory.dmp

Filesize
464KB

Download
memory/4560-16-0x0000000000600000-0x0000000000630000-memory.dmp

Filesize
192KB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads