5da72d16a8acea699bc28b5e3e52fecfd9dc429ac97fe3349eac414b13e9911c

Analysis

max time kernel
141s
max time network
134s
platform
windows10-2004_x64
resource
win10v2004-20240709-en
resource tags

arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
submitted
22/07/2024, 13:28

Target

6359c8244843199544a077293f89e39b_JaffaCakes118.exe
Size

324KB
MD5

6359c8244843199544a077293f89e39b
SHA1

a0312973a2b01585f1c1d9f68eb17f511e503a65
SHA256

5da72d16a8acea699bc28b5e3e52fecfd9dc429ac97fe3349eac414b13e9911c
SHA512

60bdf86b0c3443adce4e30783576576eb139f106eab8399164b076a479d3cb92a9890fc40677ade94396281c34d3f13f7ed3a7fddc42a16eedd02b5ae6d42b04
SSDEEP

6144:GgtmtlV5D4zwURRFWOEo0VOCs3vjY6b+MG30sCPE0W9CkAE+7bMdvHxkKA7vKZwq:rtmtX5szfRFkWfjY0+MG3XCPE0PkvqoD

Score

7^/10

upx

UPX packed file 2 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral2/memory/4476-0-0x0000000000400000-0x00000000004C5000-memory.dmp	upx
behavioral2/memory/4476-2-0x0000000000400000-0x00000000004C5000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\6359c8244843199544a077293f89e39b_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\6359c8244843199544a077293f89e39b_JaffaCakes118.exe"
1⤵
PID:4476

memory/4476-0-0x0000000000400000-0x00000000004C5000-memory.dmp

Filesize
788KB

Download
memory/4476-1-0x0000000000C70000-0x0000000000C71000-memory.dmp

Filesize
4KB

Download
memory/4476-2-0x0000000000400000-0x00000000004C5000-memory.dmp

Filesize
788KB

Download
memory/4476-4-0x0000000000C70000-0x0000000000C71000-memory.dmp

Filesize
4KB

Download