02f66419750f161e0506a93fcf9124ba8689d0c7fb2b09b1c3a50d70c18c6a12

Analysis

max time kernel
122s
max time network
124s
platform
windows7_x64
resource
win7-20240705-en
resource tags

arch:x64arch:x86image:win7-20240705-enlocale:en-usos:windows7-x64system
submitted
22/07/2024, 13:45

Sharing

Copy URL Twitter E-mail

Report Analysis Logs

General

Target

6367180d18548469819aaf4c243e3726_JaffaCakes118.exe
Size

257KB
MD5

6367180d18548469819aaf4c243e3726
SHA1

894c2ed7c11d2c2ace84631b2282b31f39e37b1b
SHA256

02f66419750f161e0506a93fcf9124ba8689d0c7fb2b09b1c3a50d70c18c6a12
SHA512

d0d29d9cdcd8adeb067a727c32ab63327e9827803663378785dca0bb9c89c35188ab404a01203db95bf18e6193c0be04bba8580b27f8d69286d7658389a9d955
SSDEEP

6144:nrC2F8NXC796TB9vj48G78mti/f3sq65HyxfDpcoH:nZeVQkTrvj49gfc12fDpcoH

Score

1^/10

Malware Config

Signatures

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	2524	6367180d18548469819aaf4c243e3726_JaffaCakes118.exe

Suspicious use of WriteProcessMemory 4 IoCs

description	pid	Process	procid_target
PID 2524 wrote to memory of 2792	2524	6367180d18548469819aaf4c243e3726_JaffaCakes118.exe	30
PID 2524 wrote to memory of 2792	2524	6367180d18548469819aaf4c243e3726_JaffaCakes118.exe	30
PID 2524 wrote to memory of 2792	2524	6367180d18548469819aaf4c243e3726_JaffaCakes118.exe	30
PID 2524 wrote to memory of 2792	2524	6367180d18548469819aaf4c243e3726_JaffaCakes118.exe	30

C:\Users\Admin\AppData\Local\Temp\6367180d18548469819aaf4c243e3726_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\6367180d18548469819aaf4c243e3726_JaffaCakes118.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of WriteProcessMemory
PID:2524
- C:\Windows\Microsoft.NET\Framework\v2.0.50727\dw20.exe
  dw20.exe -x -s 512
  2⤵
  PID:2792

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2524-0-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-9-0x0000000076FA4000-0x0000000076FA5000-memory.dmp

Filesize
4KB

Download
memory/2524-10-0x0000000076F90000-0x00000000770A0000-memory.dmp

Filesize
1.1MB

Download
memory/2524-11-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-12-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-13-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-14-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-15-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-16-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-17-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-18-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-20-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-27-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-29-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-28-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-26-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-25-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-24-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-23-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-22-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-21-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-60-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-19-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-54-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-71-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-70-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-69-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-68-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-67-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-66-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-65-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-64-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-63-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-62-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-61-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-166-0x0000000076F90000-0x00000000770A0000-memory.dmp

Filesize
1.1MB

Download
memory/2524-165-0x0000000076F90000-0x00000000770A0000-memory.dmp

Filesize
1.1MB

Download
memory/2524-167-0x0000000076F90000-0x00000000770A0000-memory.dmp

Filesize
1.1MB

Download
memory/2524-168-0x0000000076F90000-0x00000000770A0000-memory.dmp

Filesize
1.1MB

Download
memory/2524-59-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-171-0x0000000076F90000-0x00000000770A0000-memory.dmp

Filesize
1.1MB

Download
memory/2524-170-0x0000000076F90000-0x00000000770A0000-memory.dmp

Filesize
1.1MB

Download
memory/2524-169-0x0000000076F90000-0x00000000770A0000-memory.dmp

Filesize
1.1MB

Download
memory/2524-58-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-57-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-56-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-55-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-53-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-52-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-51-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-50-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-49-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-48-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-47-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-46-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-45-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-44-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-43-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-42-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-41-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-40-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-39-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-38-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-37-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-36-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-35-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-34-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-33-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-32-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-31-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-30-0x0000000000220000-0x0000000000254000-memory.dmp

Filesize
208KB

Download
memory/2524-173-0x0000000076F90000-0x00000000770A0000-memory.dmp

Filesize
1.1MB

Download
memory/2524-174-0x0000000076F90000-0x00000000770A0000-memory.dmp

Filesize
1.1MB

Download
memory/2524-175-0x0000000076F90000-0x00000000770A0000-memory.dmp

Filesize
1.1MB

Download
memory/2792-172-0x0000000076F90000-0x00000000770A0000-memory.dmp

Filesize
1.1MB

Download
memory/2792-176-0x0000000076F90000-0x00000000770A0000-memory.dmp

Filesize
1.1MB

Download

Analysis

Sharing

General

Malware Config

Signatures

Processes

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads