191649b25ce133270b742099416882492e331108846921f9a2b6c219f09525e4

Analysis

max time kernel
140s
max time network
122s
platform
windows7_x64
resource
win7-20240903-en
resource tags

arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
submitted
19/09/2024, 16:02

Target

ebb0ce403aa4eea2a61451fb7a451206_JaffaCakes118.exe
Size

623KB
MD5

ebb0ce403aa4eea2a61451fb7a451206
SHA1

cd35dd3462df49124d38c7b145aa83998c6f72d8
SHA256

191649b25ce133270b742099416882492e331108846921f9a2b6c219f09525e4
SHA512

892b61c417e137eda1f81a37dda13eacb32ec06234c4621ebd7dc4aef7aa474110060c1a11e2ab876cf476d0d059972d9ba3e8446c327d32db80a93b7f678efe
SSDEEP

12288:Ur+rGfXoe/xJlSzLgHzbTqz5kSoXtY9nGCT2Q+nWN9D9LOyYvjrEt:xGVxJlSnYbSvo90nQOFVOysHEt

Score

7^/10

upx

UPX packed file 16 IoCs

Detects executables packed with UPX/modified UPX open source packer.

resource	yara_rule
behavioral1/memory/2344-0-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-1-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-2-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-3-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-4-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-5-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-6-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-7-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-8-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-9-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-10-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-11-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-12-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-13-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-14-0x0000000000400000-0x0000000000423000-memory.dmp	upx
behavioral1/memory/2344-15-0x0000000000400000-0x0000000000423000-memory.dmp	upx

C:\Users\Admin\AppData\Local\Temp\ebb0ce403aa4eea2a61451fb7a451206_JaffaCakes118.exe
"C:\Users\Admin\AppData\Local\Temp\ebb0ce403aa4eea2a61451fb7a451206_JaffaCakes118.exe"
1⤵
PID:2344

memory/2344-0-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-1-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-2-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-3-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-4-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-5-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-6-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-7-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-8-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-9-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-10-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-11-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-12-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-13-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-14-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download
memory/2344-15-0x0000000000400000-0x0000000000423000-memory.dmp

Filesize
140KB

Download