Overview

overview

7

Static

static

7

0ddb6dc1f7...18.dll

windows7-x64

7

0ddb6dc1f7...18.dll

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    0ddb6dc1f75303a66e1e381e0ca59dd4_JaffaCakes118

  • Size

    2.0MB

  • Sample

    240625-nb5pgazamm

  • MD5

    0ddb6dc1f75303a66e1e381e0ca59dd4

  • SHA1

    1bfa4976219c04ad030fbb06a400ef21810c9a30

  • SHA256

    c24bbc859198cd85a69746b4c6b25c4079d7f0ec3e95c53b19e01ce00c8cef9d

  • SHA512

    3016aa23d72239d738b9ee71a2151d8043c671dee05363d9e1a115326196f432f3a91d0e3fd14cf7a8ec2c686dea193140eef737da94b3486541c7f80153c78f

  • SSDEEP

    24576:iAnBbHowmvCZ74HWI7QC3iUS5WHD87ZLIfGP:RJtrC30cqJP

Score
7/10
vmprotect

Malware Config

Targets

    • Target

      0ddb6dc1f75303a66e1e381e0ca59dd4_JaffaCakes118

    • Size

      2.0MB

    • MD5

      0ddb6dc1f75303a66e1e381e0ca59dd4

    • SHA1

      1bfa4976219c04ad030fbb06a400ef21810c9a30

    • SHA256

      c24bbc859198cd85a69746b4c6b25c4079d7f0ec3e95c53b19e01ce00c8cef9d

    • SHA512

      3016aa23d72239d738b9ee71a2151d8043c671dee05363d9e1a115326196f432f3a91d0e3fd14cf7a8ec2c686dea193140eef737da94b3486541c7f80153c78f

    • SSDEEP

      24576:iAnBbHowmvCZ74HWI7QC3iUS5WHD87ZLIfGP:RJtrC30cqJP

    Score
    7/10
    vmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks