Overview

overview

7

Static

static

7

�...��.exe

windows7-x64

7

�...��.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6872559f5239153c9a9ab634a5d332d3_JaffaCakes118

  • Size

    1.3MB

  • Sample

    240522-yshldaee4v

  • MD5

    6872559f5239153c9a9ab634a5d332d3

  • SHA1

    fd25a1005df3027ade3306f52dfbde288eacc815

  • SHA256

    a8377270486aec3c994de7c2ccd7b53c791ff525ed124a29c4584ecb49ad4938

  • SHA512

    f84c0126d214f0860baf8c8a61b1b80dbb7f9e66c6264a08261e31826be4d403a81b3b38271fe5850793b95afb61235729b2c420a75fc9a7926baf49a9f5c0dd

  • SSDEEP

    24576:dEEYSweuYkuIiiqrVdD07/45nT1ZLKunUl/O/bghf3e6mbkR2WcYu56:vYSweuYktii0vDL1TnRnUEzUfGAR2WcU

Score
7/10
vmprotect

Malware Config

Targets

    • Target

      㶮.exe

    • Size

      1.3MB

    • MD5

      c968a7435252b03172f3ce2203d2cb3f

    • SHA1

      6a82d3c7562f44a2a154640145034ea0977c1484

    • SHA256

      14c5d6b1a0b1eef488240bc71d2011dead947721dd73de1591dfedf145e481cf

    • SHA512

      763534e570494408104008016cd354e2dbb91e8aad043807d84e1a789f47517bd09742916ea1e9b17619c7c0cb424d443f7a6a8e43ca2414c4dfa547b559a3b7

    • SSDEEP

      24576:w5q9mwQVKgUT1EIAThEi1r5alT96sJokqI/Zv7d6TUeLOPJZi:w5q4ygUTixh/569CI/ZjJea/i

    Score
    7/10
    vmprotect

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks