General

  • Target

    1277284f09b1330790f6bd64059f5420_JaffaCakes118

  • Size

    1.1MB

  • Sample

    240626-st2srazgrb

  • MD5

    1277284f09b1330790f6bd64059f5420

  • SHA1

    c35c57d5bb96a92a6cb5a0fef832feae58c41152

  • SHA256

    6d29f33d2a14e2e31e0b8440232f971fceb5826f6a83b487042cc1a71f01f5f2

  • SHA512

    b217517abd0c32211bbca54545331136d10bd52291ccac8be8f88fd4b6e702ede78cc8a873b64748c371ecb5df2532653f969393e06d98edbd00dbcce33e177b

  • SSDEEP

    24576:lhLSyoEdeG6fSw+lrGTjioKvbArChS++cC5XFSPR0esy+:lRvoHBaw+uPGphSd5VEKy

Score
7/10

Malware Config

Targets

    • Target

      1277284f09b1330790f6bd64059f5420_JaffaCakes118

    • Size

      1.1MB

    • MD5

      1277284f09b1330790f6bd64059f5420

    • SHA1

      c35c57d5bb96a92a6cb5a0fef832feae58c41152

    • SHA256

      6d29f33d2a14e2e31e0b8440232f971fceb5826f6a83b487042cc1a71f01f5f2

    • SHA512

      b217517abd0c32211bbca54545331136d10bd52291ccac8be8f88fd4b6e702ede78cc8a873b64748c371ecb5df2532653f969393e06d98edbd00dbcce33e177b

    • SSDEEP

      24576:lhLSyoEdeG6fSw+lrGTjioKvbArChS++cC5XFSPR0esy+:lRvoHBaw+uPGphSd5VEKy

    Score
    7/10
    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

MITRE ATT&CK Enterprise v15

Tasks