Overview

overview

10

Static

static

10

JaffaCakes...ae.exe

windows7-x64

10

JaffaCakes...ae.exe

windows10-2004-x64

10

Analysis

  • max time kernel
    122s
  • max time network
    127s
  • platform
    windows7_x64
  • resource
    win7-20240903-en
  • resource tags

    arch:x64arch:x86image:win7-20240903-enlocale:en-usos:windows7-x64system
  • submitted
    22-12-2024 06:42

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    JaffaCakes118_395d9d222212748bea7c6cce69624b33e5f567f923611f3a242bbb40a68bb3ae.exe

  • Size

    504KB

  • MD5

    ea2f85f03d443d08855399a4e07df42a

  • SHA1

    dc1205fd905f1dbed4c961763e3ba0f206af45b1

  • SHA256

    395d9d222212748bea7c6cce69624b33e5f567f923611f3a242bbb40a68bb3ae

  • SHA512

    8d0bd4cb3f0dc434482d00ccb6bc6ad2d586bced04c362bda13edeab439bae3841a1ea1d62bf4e56c9e8287722bc454cddc44938d8ccf898b1ab47989e71ad1b

  • SSDEEP

    12288:+bo7ydYUzsV7qJJHBaZuK6sfFCKsfZD1VSd:AcydvzsZqIuKBf2Ze

Score
10/10
remcosrat

Malware Config

Signatures

  • Remcos

    Remcos is a closed-source remote control and surveillance software.

    ratremcos
  • Remcos family
    remcos

Processes

  • C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_395d9d222212748bea7c6cce69624b33e5f567f923611f3a242bbb40a68bb3ae.exe
    "C:\Users\Admin\AppData\Local\Temp\JaffaCakes118_395d9d222212748bea7c6cce69624b33e5f567f923611f3a242bbb40a68bb3ae.exe"
    1⤵
      PID:2072

    Network

    MITRE ATT&CK Matrix

    Replay Monitor

    Loading Replay Monitor...

    Downloads

    • memory/2072-0-0x0000000000580000-0x00000000005FE000-memory.dmp

      Filesize

      504KB

      Download