General

  • Target

    10e83a89cbac846b914a928071c40653_JaffaCakes118

  • Size

    172KB

  • Sample

    240626-gdxnba1ckm

  • MD5

    10e83a89cbac846b914a928071c40653

  • SHA1

    607c35a47b1f79d089a1c74816af47cfe7195f30

  • SHA256

    65d9ed9a8d06c6146b59bb5588d8e2a3c229dbd3211e9d176023fc383a0a164b

  • SHA512

    c3cc34ed2e2da5e55fea75ae5fbb2c143d3067ed4177ef2c2a324e21df1ffafdce422775c5f30fa3661c59e9e8c920a236a65e6e5d3cbe79a2702599cf1cf581

  • SSDEEP

    3072:sE2vDSmZfRencJL28aRpEmjR0ijtmsFCUb5z3rcmDmD8ZiZglEhZU4vWfxY5:UNfkcJ9+oUb5cx/ZgWZU4vWfxY5

Score
7/10

Malware Config

Targets

    • Target

      10e83a89cbac846b914a928071c40653_JaffaCakes118

    • Size

      172KB

    • MD5

      10e83a89cbac846b914a928071c40653

    • SHA1

      607c35a47b1f79d089a1c74816af47cfe7195f30

    • SHA256

      65d9ed9a8d06c6146b59bb5588d8e2a3c229dbd3211e9d176023fc383a0a164b

    • SHA512

      c3cc34ed2e2da5e55fea75ae5fbb2c143d3067ed4177ef2c2a324e21df1ffafdce422775c5f30fa3661c59e9e8c920a236a65e6e5d3cbe79a2702599cf1cf581

    • SSDEEP

      3072:sE2vDSmZfRencJL28aRpEmjR0ijtmsFCUb5z3rcmDmD8ZiZglEhZU4vWfxY5:UNfkcJ9+oUb5cx/ZgWZU4vWfxY5

    Score
    7/10
    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks