General

  • Target

    5b084f8eaac8043d63a289068ff3bbcd_JaffaCakes118

  • Size

    2.3MB

  • Sample

    240519-x1s7eade82

  • MD5

    5b084f8eaac8043d63a289068ff3bbcd

  • SHA1

    b8e802265838acd0f59e0d13bb4db1301a62bda8

  • SHA256

    fdc1630dceec771d62c102a65d6295a473e9dfd0f7b07c35852d2b1944cd1981

  • SHA512

    44478b64b2ee8e05c3868658a039368e6c2e292a71b52825f1d112f2b57ad817506b45d9084400580d5821f94332935eb60a71962386403a0128778ba965dbd7

  • SSDEEP

    49152:92bHd5DBTTc2RI4CAN4Xvu++UcB2OtBX8sH4E05ri1RrD1oJjpRoo6BFq:92Td5DNFRF7Niz+UcBjosYJ5ri1RrD1W

Score
7/10

Malware Config

Targets

    • Target

      5b084f8eaac8043d63a289068ff3bbcd_JaffaCakes118

    • Size

      2.3MB

    • MD5

      5b084f8eaac8043d63a289068ff3bbcd

    • SHA1

      b8e802265838acd0f59e0d13bb4db1301a62bda8

    • SHA256

      fdc1630dceec771d62c102a65d6295a473e9dfd0f7b07c35852d2b1944cd1981

    • SHA512

      44478b64b2ee8e05c3868658a039368e6c2e292a71b52825f1d112f2b57ad817506b45d9084400580d5821f94332935eb60a71962386403a0128778ba965dbd7

    • SSDEEP

      49152:92bHd5DBTTc2RI4CAN4Xvu++UcB2OtBX8sH4E05ri1RrD1oJjpRoo6BFq:92Td5DNFRF7Niz+UcBjosYJ5ri1RrD1W

    Score
    7/10
    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks