21532e4acaf8cc83d47d2c865c1f9b8cdcea1d8a0251bee0f5458d3ff25e8a28

Analysis

max time kernel
93s
max time network
94s
platform
windows10-2004_x64
resource
win10v2004-20240802-en
resource tags

arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
submitted
09-09-2024 03:55

Sharing

Copy URL

Twitter E-mail

Report Analysis Logs

General

Target

d59e0c0d47ed44a747bc36faffc5294b_JaffaCakes118.exe
Size

452KB
MD5

d59e0c0d47ed44a747bc36faffc5294b
SHA1

9ffcf3a41b0f6f22abb6a13f3c1f876b4104911e
SHA256

21532e4acaf8cc83d47d2c865c1f9b8cdcea1d8a0251bee0f5458d3ff25e8a28
SHA512

f67291278224a3be789bf1c82c3015d400d6b7fe3c0352f140067c9b1de9944d2cc1b95a51078717eed7b3addfeb736b308da738f48975db68112359238732e5
SSDEEP

6144:Paiil5UryunkeMDhY09Fnq9JJpmqwY1llH4gDeT+RCOS8Q2qeuRg6/t8WGYWO0rW:YUrPkLDCEkJJsqw442epOG1mTZi

Score

7^/10

Malware Config

Signatures

Drops startup file 1 IoCs

description	ioc	Process
File created	C:\Users\Admin\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Startup\d59e0c0d47ed44a747bc36faffc5294b_JaffaCakes118.lnk	d59e0c0d47ed44a747bc36faffc5294b_JaffaCakes118.exe

Enumerates physical storage devices 1 TTPs
Attempts to interact with connected storage/optical drive(s).

System Information Discovery
T1082

C:\Users\Admin\AppData\Local\Temp\d59e0c0d47ed44a747bc36faffc5294b_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\d59e0c0d47ed44a747bc36faffc5294b_JaffaCakes118.exe"
1⤵
- Drops startup file
PID:2804

Network

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Information Discovery

T1082

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Replay Monitor

Loading Replay Monitor...

Downloads

memory/2804-0-0x0000000000E00000-0x0000000000E02000-memory.dmp

Filesize
8KB

Download
memory/2804-1-0x0000000000E10000-0x0000000000E11000-memory.dmp

Filesize
4KB

Download
memory/2804-2-0x0000000000EE0000-0x0000000000EE1000-memory.dmp

Filesize
4KB

Download
memory/2804-3-0x0000000001890000-0x0000000001891000-memory.dmp

Filesize
4KB

Download
memory/2804-5-0x00000000018B0000-0x00000000018B1000-memory.dmp

Filesize
4KB

Download
memory/2804-4-0x00000000018A0000-0x00000000018A1000-memory.dmp

Filesize
4KB

Download
memory/2804-6-0x00000000018C0000-0x00000000018C1000-memory.dmp

Filesize
4KB

Download
memory/2804-8-0x0000000001930000-0x0000000001931000-memory.dmp

Filesize
4KB

Download
memory/2804-16-0x0000000001910000-0x0000000001912000-memory.dmp

Filesize
8KB

Download
memory/2804-15-0x0000000003560000-0x0000000003561000-memory.dmp

Filesize
4KB

Download
memory/2804-14-0x0000000003520000-0x0000000003521000-memory.dmp

Filesize
4KB

Download
memory/2804-13-0x0000000003510000-0x0000000003511000-memory.dmp

Filesize
4KB

Download
memory/2804-12-0x0000000003500000-0x0000000003501000-memory.dmp

Filesize
4KB

Download
memory/2804-11-0x0000000001960000-0x0000000001961000-memory.dmp

Filesize
4KB

Download
memory/2804-10-0x0000000001950000-0x0000000001951000-memory.dmp

Filesize
4KB

Download
memory/2804-9-0x0000000001940000-0x0000000001941000-memory.dmp

Filesize
4KB

Download
memory/2804-7-0x0000000001920000-0x0000000001921000-memory.dmp

Filesize
4KB

Download
memory/2804-26-0x00000000035C0000-0x00000000035C1000-memory.dmp

Filesize
4KB

Download
memory/2804-25-0x00000000035B0000-0x00000000035B1000-memory.dmp

Filesize
4KB

Download
memory/2804-24-0x00000000035A0000-0x00000000035A1000-memory.dmp

Filesize
4KB

Download
memory/2804-23-0x0000000003570000-0x0000000003571000-memory.dmp

Filesize
4KB

Download
memory/2804-22-0x0000000003590000-0x0000000003591000-memory.dmp

Filesize
4KB

Download
memory/2804-21-0x0000000003580000-0x0000000003581000-memory.dmp

Filesize
4KB

Download
memory/2804-17-0x0000000003530000-0x0000000003556000-memory.dmp

Filesize
152KB

Download
memory/2804-27-0x00000000039F0000-0x00000000039F1000-memory.dmp

Filesize
4KB

Download
memory/2804-30-0x0000000003A20000-0x0000000003A21000-memory.dmp

Filesize
4KB

Download
memory/2804-29-0x0000000003A10000-0x0000000003A11000-memory.dmp

Filesize
4KB

Download
memory/2804-28-0x0000000003A00000-0x0000000003A01000-memory.dmp

Filesize
4KB

Download
memory/2804-31-0x0000000003A30000-0x0000000003A31000-memory.dmp

Filesize
4KB

Download