Overview

overview

3

Static

static

3

fd4105855a...18.exe

windows7-x64

1

fd4105855a...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    95s
  • max time network
    98s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    28-09-2024 22:20

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    fd4105855af26f1ae87cfd821bb46011_JaffaCakes118.exe

  • Size

    318KB

  • MD5

    fd4105855af26f1ae87cfd821bb46011

  • SHA1

    afa67fc92a38a37b5742974c08a2e622b9badd10

  • SHA256

    d7e72e64771e316dc815da8af6e51a999d3fa7118aad8932cc56441d8e1a3d1d

  • SHA512

    52d10433c2c0814ff1986f04bca114a49b0f4ab9c62254cf3ac53a273cb9b5914f45148fd1d20d693e9ca5a98033a2680f41c16b908f76d4f28017f78f09b519

  • SSDEEP

    6144:IZMBxVJ5OdlRDj/pt44MPK6pxOrqaCyD6pRcDbKkWzxcBfhSF:9b/5OFM3CX7KRab7IxI5SF

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\fd4105855af26f1ae87cfd821bb46011_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\fd4105855af26f1ae87cfd821bb46011_JaffaCakes118.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2484

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • memory/2484-0-0x00007FFF10DE3000-0x00007FFF10DE5000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2484-1-0x00000137ADEB0000-0x00000137ADF06000-memory.dmp

    Filesize

    344KB

    Download

  • memory/2484-2-0x00000137AFAB0000-0x00000137AFB2A000-memory.dmp

    Filesize

    488KB

    Download

  • memory/2484-3-0x00000137AE2A0000-0x00000137AE2A6000-memory.dmp

    Filesize

    24KB

    Download

  • memory/2484-4-0x00000137C83E0000-0x00000137C8412000-memory.dmp

    Filesize

    200KB

    Download

  • memory/2484-5-0x00000137C8A90000-0x00000137C8FB8000-memory.dmp

    Filesize

    5.2MB

    Download

  • memory/2484-6-0x00007FFF10DE0000-0x00007FFF118A1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2484-7-0x00007FFF10DE3000-0x00007FFF10DE5000-memory.dmp

    Filesize

    8KB

    Download

  • memory/2484-8-0x00007FFF10DE0000-0x00007FFF118A1000-memory.dmp

    Filesize

    10.8MB

    Download

  • memory/2484-9-0x00000137C8560000-0x00000137C859A000-memory.dmp

    Filesize

    232KB

    Download

  • memory/2484-10-0x00000137AFBC0000-0x00000137AFBE6000-memory.dmp

    Filesize

    152KB

    Download

  • memory/2484-12-0x00007FFF10DE0000-0x00007FFF118A1000-memory.dmp

    Filesize

    10.8MB

    Download