Overview

overview

6

Static

static

3

099653bb2f...18.exe

windows7-x64

6

099653bb2f...18.exe

windows10-2004-x64

6

Analysis

  • max time kernel
    118s
  • max time network
    119s
  • platform
    windows7_x64
  • resource
    win7-20240704-en
  • resource tags

    arch:x64arch:x86image:win7-20240704-enlocale:en-usos:windows7-x64system
  • submitted
    02/10/2024, 07:39

Sharing

Copy URL Twitter E-mail
Report Analysis Logs

General

  • Target

    099653bb2f71ca43a61b5e45b1431cbc_JaffaCakes118.exe

  • Size

    269KB

  • MD5

    099653bb2f71ca43a61b5e45b1431cbc

  • SHA1

    ed10b3faf114cbf20eed70380f317c092104d037

  • SHA256

    652b9217b5e77638461cd570449c9a543848fada5cec7350db59a4564f414c3e

  • SHA512

    6e7baba0f9d2394b14a8cf060d2ae75c6c9c3c0ce7aea4e40e6d9caa6c41040333ac046050735093aee41793969382b107aecd13fc8de63c108f54408ec21f6c

  • SSDEEP

    3072:qjOGZeOYL9jsZF1+kzHpXNJiNLKsFHH4BNdY8B1A32qX5:gCJjsZHBzJXcQNS8Bamq

Score
6/10
persistence

Malware Config

Signatures

  • Adds Run key to start application 2 TTPs 1 IoCs
    persistence
  • Suspicious behavior: RenamesItself 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\099653bb2f71ca43a61b5e45b1431cbc_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\099653bb2f71ca43a61b5e45b1431cbc_JaffaCakes118.exe"
    1⤵
    • Adds Run key to start application
    • Suspicious behavior: RenamesItself
    PID:2708

Network

        MITRE ATT&CK Enterprise v15

        Replay Monitor

        Loading Replay Monitor...

        Downloads

        • memory/2708-0-0x0000000000400000-0x000000000044E000-memory.dmp

          Filesize

          312KB

          Download