Overview

overview

7

Static

static

7

0e86a28a99...18.exe

windows7-x64

7

0e86a28a99...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    0e86a28a9955aa316a8ce74f440efcb7_JaffaCakes118

  • Size

    2.4MB

  • Sample

    240625-sj21rsxbme

  • MD5

    0e86a28a9955aa316a8ce74f440efcb7

  • SHA1

    b90209a398e51e9b3c29651b90272ba31669d93b

  • SHA256

    c2da58c052d3464e009b83ff356fb0b48944d535de17c05b297dcdf13e23aa06

  • SHA512

    9fb08b4471de3ff9c65f2fff8de5b2a7d63853b2d7e8165afd1d7d8954deb22a514a4840b9d11fa403a0e93394ec6ad3cbfbdb0675bccfacbbdd981cd201ea2e

  • SSDEEP

    49152:Td8KGFxuaRwhT6ClhjVU1gNMk2WW5rwDksMTwv:Td8KGfBRwhXzSg2/WWhwY

Score
7/10
vmprotect

Malware Config

Targets

    • Target

      0e86a28a9955aa316a8ce74f440efcb7_JaffaCakes118

    • Size

      2.4MB

    • MD5

      0e86a28a9955aa316a8ce74f440efcb7

    • SHA1

      b90209a398e51e9b3c29651b90272ba31669d93b

    • SHA256

      c2da58c052d3464e009b83ff356fb0b48944d535de17c05b297dcdf13e23aa06

    • SHA512

      9fb08b4471de3ff9c65f2fff8de5b2a7d63853b2d7e8165afd1d7d8954deb22a514a4840b9d11fa403a0e93394ec6ad3cbfbdb0675bccfacbbdd981cd201ea2e

    • SSDEEP

      49152:Td8KGFxuaRwhT6ClhjVU1gNMk2WW5rwDksMTwv:Td8KGfBRwhXzSg2/WWhwY

    Score
    7/10
    vmprotect

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks