Overview

overview

3

Static

static

3

ff5291b5c3...18.exe

windows7-x64

1

ff5291b5c3...18.exe

windows10-2004-x64

1

Analysis

  • max time kernel
    94s
  • max time network
    98s
  • platform
    windows10-2004_x64
  • resource
    win10v2004-20240802-en
  • resource tags

    arch:x64arch:x86image:win10v2004-20240802-enlocale:en-usos:windows10-2004-x64system
  • submitted
    29/09/2024, 20:56

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    ff5291b5c30bbbf405c624334159e77f_JaffaCakes118.exe

  • Size

    52KB

  • MD5

    ff5291b5c30bbbf405c624334159e77f

  • SHA1

    6a091e3d4dadbcd1af7e2cffe0553b3376e48e45

  • SHA256

    b704b5fda1aafdc834337d7f2483924aa400f6855a8bbe00ae2951bfdf0aad78

  • SHA512

    337405c8b670fece9713dc2cd6a878e3e593fe689d82cf2752ec8356b27e8de9afc392abd6a0df55a709526641fc4e3ca7cf525ec312599e75dfb8d1bc520e6f

  • SSDEEP

    768:UJpNTPf6Jkj77vTT6KntSKihIj9nhEj0WoPFEDooo9:UhbMk37LT6L+n9z2DXo9

Score
1/10

Malware Config

Signatures

  • Suspicious behavior: GetForegroundWindowSpam 1 IoCs
  • Suspicious use of SetWindowsHookEx 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\ff5291b5c30bbbf405c624334159e77f_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\ff5291b5c30bbbf405c624334159e77f_JaffaCakes118.exe"
    1⤵
    • Suspicious behavior: GetForegroundWindowSpam
    • Suspicious use of SetWindowsHookEx
    PID:1980

Network

        MITRE ATT&CK Matrix

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/1980-0-0x00007FF965E05000-0x00007FF965E06000-memory.dmp

          Filesize

          4KB

          Download

        • memory/1980-2-0x00007FF965B50000-0x00007FF9664F1000-memory.dmp

          Filesize

          9.6MB

          Download

        • memory/1980-1-0x000000001B9A0000-0x000000001BA46000-memory.dmp

          Filesize

          664KB

          Download

        • memory/1980-3-0x000000001C020000-0x000000001C4EE000-memory.dmp

          Filesize

          4.8MB

          Download

        • memory/1980-4-0x00007FF965B50000-0x00007FF9664F1000-memory.dmp

          Filesize

          9.6MB

          Download

        • memory/1980-5-0x000000001C4F0000-0x000000001C58C000-memory.dmp

          Filesize

          624KB

          Download

        • memory/1980-6-0x00000000010D0000-0x00000000010D8000-memory.dmp

          Filesize

          32KB

          Download

        • memory/1980-7-0x00007FF965E05000-0x00007FF965E06000-memory.dmp

          Filesize

          4KB

          Download

        • memory/1980-8-0x00007FF965B50000-0x00007FF9664F1000-memory.dmp

          Filesize

          9.6MB

          Download

        • memory/1980-9-0x00007FF965B50000-0x00007FF9664F1000-memory.dmp

          Filesize

          9.6MB

          Download