General

  • Target

    10e766f8ab87e13a59960db1e9490f29_JaffaCakes118

  • Size

    250KB

  • Sample

    240626-gcxa6a1bpk

  • MD5

    10e766f8ab87e13a59960db1e9490f29

  • SHA1

    73f69d6cdd12b13b79bb04fd0e5907554efe2703

  • SHA256

    93b936fb9813f927f448837912e02824828a33aaa00f327fdb380135a23f53f4

  • SHA512

    ad22abb28bb4e3848d45da7e3c066b28c197e3920cc76ef8a95bc02e7ca09607883f02f1a587f8ca43cfef9399ebbd7b91ccc5d3e44953c65b8ad105c4ef09a4

  • SSDEEP

    6144:NSjhdF1OOMlLo8wqT5YzoT3iLQR7AJVn6QdET0IDN:N0h70IjquoOLQp66Qdj

Score
7/10

Malware Config

Targets

    • Target

      10e766f8ab87e13a59960db1e9490f29_JaffaCakes118

    • Size

      250KB

    • MD5

      10e766f8ab87e13a59960db1e9490f29

    • SHA1

      73f69d6cdd12b13b79bb04fd0e5907554efe2703

    • SHA256

      93b936fb9813f927f448837912e02824828a33aaa00f327fdb380135a23f53f4

    • SHA512

      ad22abb28bb4e3848d45da7e3c066b28c197e3920cc76ef8a95bc02e7ca09607883f02f1a587f8ca43cfef9399ebbd7b91ccc5d3e44953c65b8ad105c4ef09a4

    • SSDEEP

      6144:NSjhdF1OOMlLo8wqT5YzoT3iLQR7AJVn6QdET0IDN:N0h70IjquoOLQp66Qdj

    Score
    7/10
    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks