Overview

overview

3

Static

static

3

6636ebb12f...18.exe

windows7-x64

1

6636ebb12f...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    141s
  • max time network
    141s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/07/2024, 04:54

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    6636ebb12f6490ae6ada65869301933a_JaffaCakes118.exe

  • Size

    59KB

  • MD5

    6636ebb12f6490ae6ada65869301933a

  • SHA1

    e2341bf5a27d506f5d39a9c3c45408cb83ea3433

  • SHA256

    7740ec281f74ba0b36ff11ef682dcebc42b25d6fe8e0d5b6654fa030f933090f

  • SHA512

    ea01a7c047d4170639b1897918db259587c9a03df86d38cceb9c8cb13c306dd772f65a3c05b3c39d92a330e4d75f7afd8c0dae40f55319511cf20d4d953ed828

  • SSDEEP

    768:BK3QsAsp/bNVNyCQga/ZZIqxL1aMJP9rjOKKjMUQsEQojnlqlrDzQiSQZmYYXcpO:kPlig4xLAZN1QqVrZ8nJxrVqXP

Score
1/10

Malware Config

Signatures

  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SendNotifyMessage 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6636ebb12f6490ae6ada65869301933a_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\6636ebb12f6490ae6ada65869301933a_JaffaCakes118.exe"
    1⤵
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SendNotifyMessage
    PID:3568

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/3568-0-0x0000000000400000-0x0000000000414000-memory.dmp

    Filesize

    80KB

    Download

  • memory/3568-2-0x0000000000400000-0x0000000000414000-memory.dmp

    Filesize

    80KB

    Download

  • memory/3568-3-0x0000000000400000-0x0000000000414000-memory.dmp

    Filesize

    80KB

    Download

  • memory/3568-5-0x0000000000400000-0x0000000000414000-memory.dmp

    Filesize

    80KB

    Download

  • memory/3568-6-0x0000000000400000-0x0000000000414000-memory.dmp

    Filesize

    80KB

    Download

  • memory/3568-8-0x0000000000400000-0x0000000000414000-memory.dmp

    Filesize

    80KB

    Download

  • memory/3568-9-0x0000000000400000-0x0000000000414000-memory.dmp

    Filesize

    80KB

    Download

  • memory/3568-11-0x0000000000400000-0x0000000000414000-memory.dmp

    Filesize

    80KB

    Download

  • memory/3568-12-0x0000000000400000-0x0000000000414000-memory.dmp

    Filesize

    80KB

    Download