General

  • Target

    5b2bb4314fd12216f4c4825c12536a72_JaffaCakes118

  • Size

    152KB

  • Sample

    240519-ynhqksfb4s

  • MD5

    5b2bb4314fd12216f4c4825c12536a72

  • SHA1

    c4d58397487b0781d2801569da154e13bc7e1bab

  • SHA256

    8a9c4dce8a4a4649e3da42788f477f4fe495a6af78c71e11b236048643e6e0df

  • SHA512

    0ddcd41960d7f6df352e3de2621739e7da421dcb87541860a2efece4932e12cc25a715ee18cf3f74c4c0440bbea0632d1a6b1823ed304eaa5c14958847170a59

  • SSDEEP

    3072:VimV7+F/Wch0S9WBUBKWmjEPW4bIeVKWnQRXJQEbNqTk:oGG/WwKfjE3IeHQR5QQNW

Score
7/10

Malware Config

Targets

    • Target

      5b2bb4314fd12216f4c4825c12536a72_JaffaCakes118

    • Size

      152KB

    • MD5

      5b2bb4314fd12216f4c4825c12536a72

    • SHA1

      c4d58397487b0781d2801569da154e13bc7e1bab

    • SHA256

      8a9c4dce8a4a4649e3da42788f477f4fe495a6af78c71e11b236048643e6e0df

    • SHA512

      0ddcd41960d7f6df352e3de2621739e7da421dcb87541860a2efece4932e12cc25a715ee18cf3f74c4c0440bbea0632d1a6b1823ed304eaa5c14958847170a59

    • SSDEEP

      3072:VimV7+F/Wch0S9WBUBKWmjEPW4bIeVKWnQRXJQEbNqTk:oGG/WwKfjE3IeHQR5QQNW

    Score
    7/10
    • Deletes itself

    • Loads dropped DLL

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Drops file in System32 directory

MITRE ATT&CK Matrix

Tasks