Analysis
-
max time kernel
14s -
max time network
19s -
platform
windows7_x64 -
resource
win7-20240903-en -
resource tags
-
submitted
15-09-2024 10:05
General
-
Target
e23aa8cc87e335bed03dc386b4abbdca_JaffaCakes118.exe
-
Size
91KB
-
MD5
e23aa8cc87e335bed03dc386b4abbdca
-
SHA1
41c78772e148d6ed9ac5d7a8f7efe9bad3cd6bc3
-
SHA256
a5af36ea318f60ea31affe463ae79f78f34d887e41ab50d8c85cdaf95ae518ab
-
SHA512
28ee7e1d82bcc2f200b1e18d0b51c9fa3bc2c64589c7266aab2256918ce5f60db0fe0cc0a8d28635a165cf8f080b2a15e077a92c8861cbc87efb3088c47cc370
-
SSDEEP
1536:EGwtRxOBJyypgmDjVwCfIAIYfGJmIMWtEMfgjtEFaKS:NwtRonyypexoiNtxYGaR
Score
1/10
Malware Config
Signatures
-
Suspicious behavior: EnumeratesProcesses 1 IoCs
-
Suspicious behavior: MapViewOfSection 1 IoCs
-
Suspicious use of AdjustPrivilegeToken 1 IoCs
Processes
-
C:\Users\Admin\AppData\Local\Temp\e23aa8cc87e335bed03dc386b4abbdca_JaffaCakes118.exe"C:\Users\Admin\AppData\Local\Temp\e23aa8cc87e335bed03dc386b4abbdca_JaffaCakes118.exe"1⤵
- Suspicious behavior: EnumeratesProcesses
- Suspicious behavior: MapViewOfSection
- Suspicious use of AdjustPrivilegeToken