General

  • Target

    13a0d590dc757f1cae8c9faec29d2ef8_JaffaCakes118

  • Size

    1.9MB

  • Sample

    240626-1y7tkawfqg

  • MD5

    13a0d590dc757f1cae8c9faec29d2ef8

  • SHA1

    baa1e5abc664e59fed6bdb4b122d2e80d6a19804

  • SHA256

    61e2c9094cf46f52d009f521c1b817813586ad214764bc8de2604151765f4acc

  • SHA512

    37f17f13c61f0352da69e948efcf0a350f8cb1160238d24d2dd8370017d4f1cc3064cd56a1c49c81d8e76fb6e60f7b0ee0d9a2cd16b1549982e10d8c5c6f3075

  • SSDEEP

    49152:RCvYctKYarZdPKRHYGumDHFpQ9yCEjtnvlq8wzpbk98h:ovvYtrnPKRHbbDHM9yCEZtq8w

Score
7/10

Malware Config

Targets

    • Target

      13a0d590dc757f1cae8c9faec29d2ef8_JaffaCakes118

    • Size

      1.9MB

    • MD5

      13a0d590dc757f1cae8c9faec29d2ef8

    • SHA1

      baa1e5abc664e59fed6bdb4b122d2e80d6a19804

    • SHA256

      61e2c9094cf46f52d009f521c1b817813586ad214764bc8de2604151765f4acc

    • SHA512

      37f17f13c61f0352da69e948efcf0a350f8cb1160238d24d2dd8370017d4f1cc3064cd56a1c49c81d8e76fb6e60f7b0ee0d9a2cd16b1549982e10d8c5c6f3075

    • SSDEEP

      49152:RCvYctKYarZdPKRHYGumDHFpQ9yCEjtnvlq8wzpbk98h:ovvYtrnPKRHbbDHM9yCEZtq8w

    Score
    7/10
    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks