General

  • Target

    58eca911335b80bca01c82fe991d61e1_JaffaCakes118

  • Size

    5.2MB

  • Sample

    240519-gv6bsadh43

  • MD5

    58eca911335b80bca01c82fe991d61e1

  • SHA1

    3283b8f93e9b73a4e95d8fdd1cbd976e1f109b12

  • SHA256

    49a1c178fea97f4362e8ba3f6bcecab87b4d05d3a7f780de772d15204b558ce8

  • SHA512

    43b51c93f7c3ded34a73d4e05bbb835f3b6e6a69ecd22ffb4e6186661cd54840192ca1c93cdbe8f7c24955d7029c04635cdd4b45dfaa82e4e9730daf5c411403

  • SSDEEP

    98304:4JFN8YdTAIEX28bjNEFW9Eih+43lt2ZEOT3qIfaCMzkgbjaP:y1ds3XtpEFW97b2sggf6

Score
7/10

Malware Config

Targets

    • Target

      58eca911335b80bca01c82fe991d61e1_JaffaCakes118

    • Size

      5.2MB

    • MD5

      58eca911335b80bca01c82fe991d61e1

    • SHA1

      3283b8f93e9b73a4e95d8fdd1cbd976e1f109b12

    • SHA256

      49a1c178fea97f4362e8ba3f6bcecab87b4d05d3a7f780de772d15204b558ce8

    • SHA512

      43b51c93f7c3ded34a73d4e05bbb835f3b6e6a69ecd22ffb4e6186661cd54840192ca1c93cdbe8f7c24955d7029c04635cdd4b45dfaa82e4e9730daf5c411403

    • SSDEEP

      98304:4JFN8YdTAIEX28bjNEFW9Eih+43lt2ZEOT3qIfaCMzkgbjaP:y1ds3XtpEFW97b2sggf6

    Score
    7/10
    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Drops desktop.ini file(s)

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks