Overview

overview

3

Static

static

3

6684f5675d...18.exe

windows7-x64

1

6684f5675d...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    139s
  • max time network
    146s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240709-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240709-enlocale:en-usos:windows10-2004-x64system
  • submitted
    23/07/2024, 06:43

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    6684f5675d7ae4734c9256d3a8300cef_JaffaCakes118.exe

  • Size

    8KB

  • MD5

    6684f5675d7ae4734c9256d3a8300cef

  • SHA1

    25737f79ca82127cc40831c82f206260250a6861

  • SHA256

    c9a75d888b07baee6781b5bc022369ac73e57be345ad18d086fc42f48645dc8e

  • SHA512

    49cf27b802f22f943d9556da5a13a5ed3ce6f8bd56ea0d20fea5b5b725b5cf1d48fb4bc4ed2df6a076fcffe3dcec04211233849ad9a3b806f051db432beaef8d

  • SSDEEP

    192:0hxrABOm7VNLW+eJI4B27MCj9zq+OT/oeh9lDC5dgTL:0/OO4VN8vY7nOT/7h9RC5dC

Score
3/10

Malware Config

Signatures

  • Program crash 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\6684f5675d7ae4734c9256d3a8300cef_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\6684f5675d7ae4734c9256d3a8300cef_JaffaCakes118.exe"
    1⤵
      PID:1888
      • C:\Windows\SysWOW64\WerFault.exe
        C:\Windows\SysWOW64\WerFault.exe -u -p 1888 -s 224
        2⤵
        • Program crash
        PID:1028
    • C:\Windows\SysWOW64\WerFault.exe
      C:\Windows\SysWOW64\WerFault.exe -pss -s 408 -p 1888 -ip 1888
      1⤵
        PID:5104

      Network

            MITRE ATT&CK Matrix

            Replay Monitor

            Loading Replay Monitor...

            Downloads

            • memory/1888-0-0x0000000000400000-0x0000000000407300-memory.dmp

              Filesize

              28KB

              Download