General

  • Target

    458910d2f00604cb3863f77fe18ef7bf_JaffaCakes118

  • Size

    2.0MB

  • Sample

    240515-lgts2sbc55

  • MD5

    458910d2f00604cb3863f77fe18ef7bf

  • SHA1

    04118b89d0c4c7b2fb4781c0622e71a5ee20ced2

  • SHA256

    40616ec5217e890fd07faa2090e4d734f9bfb5bb03404d85d33912db4b48a802

  • SHA512

    1ea2a27a79ebc9d307de614159a1dadc7a90b69c532965efc159b068e165adbf3739ec2b9cc60b1e9d4bc7496bd92a697e237490f417e98cadafbdbd3059a954

  • SSDEEP

    49152:Gxi8SVk9Q/2u4edrp0dC6y14esvXppcCsVC3FajrwBvTq:GDQ/2TupVgfppcFjqbq

Malware Config

Targets

    • Target

      AsparaginCiiztt MeeennNuU7.0.exe

    • Size

      2.0MB

    • MD5

      6dd774ed43a5c9e058552ba693b7de6d

    • SHA1

      4a1cf5cefdae2a052894f9eb3d6ab3474109ed6c

    • SHA256

      67ea7f6da404c0ac64c9397595f09e3c713f7f2546597fd1cd90b8aaf4368740

    • SHA512

      a6b235d85fc791e7919b2c5e564ecf1d8e5b7169e70e6f38441d6a711d445879e92b943f185e465ba63b6a3d2efe9a92778ed05b6c02387752dd6b778e53e6cd

    • SSDEEP

      49152:Dk9vRPrMdJp7ofC8zI3dbUsOnelDseoUQOE5oQfLk4a:Dk9wGC8GKnpe5QOZQjj

    • Drops file in Drivers directory

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

    • Loads dropped DLL

    • Modifies file permissions

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks