Overview

overview

3

Static

static

1

3fb02cc7e0...18.exe

windows7-x64

1

3fb02cc7e0...18.exe

windows10-2004-x64

3

Analysis

  • max time kernel
    118s
  • max time network
    118s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    13-10-2024 11:51

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    3fb02cc7e01de736d64188a014e1a506_JaffaCakes118.exe

  • Size

    7KB

  • MD5

    3fb02cc7e01de736d64188a014e1a506

  • SHA1

    b19d1cb59d283e2c888da4419dcb84a24f58e00b

  • SHA256

    e776045befdf594f371a811cede669bcdbc20f182c233a8ca04124120dcbe84b

  • SHA512

    882d544dc169df91e99665b6717d1a739953bb30f5e796498c4b2c6c59a2740ee67f58b3b1dc6ced4855e763dba4834898aa764d34bb33804ff74bf622fe302b

  • SSDEEP

    192:i9TZHkvMRMotbSvTLEyncjWOYgb32gm5Qdpk1bPnV:gt+sMotbSFnQbCQo1bPV

Score
1/10

Malware Config

Signatures

  • Suspicious use of AdjustPrivilegeToken 1 IoCs

Processes

  • C:\Users\Admin\AppData\Local\Temp\3fb02cc7e01de736d64188a014e1a506_JaffaCakes118.exe
    "C:\Users\Admin\AppData\Local\Temp\3fb02cc7e01de736d64188a014e1a506_JaffaCakes118.exe"
    1⤵
    • Suspicious use of AdjustPrivilegeToken
    PID:2524

Network

MITRE ATT&CK Matrix

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\ProgramData\Microsoft\Network\Connections\Pbk\rasphone.pbk
    Filesize

    1KB

    MD5

    8218828e52ea99cbce7031a22dd70cc3

    SHA1

    d45a8fb5099678ad4d1c61432b458272408e4ba1

    SHA256

    a81b07d88b525806364e6f827bdbb6cc67280257bdf00ad1e37db34c74064cd4

    SHA512

    09d844331af30616ee64e3a8d7f737da0607c3fe932e8aeabd829826338a75061c1582075b0b7ac839d0c4e04cf02c2c423e70ce0cbbc7968c8e282b01721657

    Download Submit