8fad5038efed3c5dcefd4ad90c46add7e2991f290cd1f04cd0ef741be0e8b0cf

Analysis

max time kernel
121s
max time network
126s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
08/09/2024, 04:31

Target

d38ba7eb2a01998eea3574b57dad6ac8_JaffaCakes118.exe
Size

9KB
MD5

d38ba7eb2a01998eea3574b57dad6ac8
SHA1

a8902610b1ea66ef2aecba9990b10943bac615e0
SHA256

8fad5038efed3c5dcefd4ad90c46add7e2991f290cd1f04cd0ef741be0e8b0cf
SHA512

f5f37d0a017b0af4611c75248a7fe54e394a406e7a61be4b1ce3604052a3e8f7e21b1ed5b2cd22b5fb5d22ed72c1d0468e93eae21f55e7896b2b3f3cd7c19b02
SSDEEP

192:9BksuDEXVwVZHqeMZZ3z93VnjdwCzK3KbLbBS:nVwTqeMdFnhwCGYF

Score

1^/10

Suspicious use of AdjustPrivilegeToken 1 IoCs

description	pid	Process
Token: SeDebugPrivilege	2712	d38ba7eb2a01998eea3574b57dad6ac8_JaffaCakes118.exe

Suspicious use of WriteProcessMemory 3 IoCs

description	pid	Process	procid_target
PID 2712 wrote to memory of 2604	2712	d38ba7eb2a01998eea3574b57dad6ac8_JaffaCakes118.exe	30
PID 2712 wrote to memory of 2604	2712	d38ba7eb2a01998eea3574b57dad6ac8_JaffaCakes118.exe	30
PID 2712 wrote to memory of 2604	2712	d38ba7eb2a01998eea3574b57dad6ac8_JaffaCakes118.exe	30

C:\Users\Admin\AppData\Local\Temp\d38ba7eb2a01998eea3574b57dad6ac8_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\d38ba7eb2a01998eea3574b57dad6ac8_JaffaCakes118.exe"
1⤵
- Suspicious use of AdjustPrivilegeToken
- Suspicious use of WriteProcessMemory
PID:2712
- C:\Windows\system32\WerFault.exe
  C:\Windows\system32\WerFault.exe -u -p 2712 -s 896
  2⤵
  PID:2604

memory/2712-0-0x000007FEF5093000-0x000007FEF5094000-memory.dmp

Filesize
4KB

Download
memory/2712-1-0x0000000000DF0000-0x0000000000DF8000-memory.dmp

Filesize
32KB

Download
memory/2712-2-0x000007FEF5090000-0x000007FEF5A7C000-memory.dmp

Filesize
9.9MB

Download
memory/2712-3-0x000007FEF5093000-0x000007FEF5094000-memory.dmp

Filesize
4KB

Download
memory/2712-4-0x000007FEF5090000-0x000007FEF5A7C000-memory.dmp

Filesize
9.9MB

Download