General

  • Target

    137d505b3e1f5b9d563533ebd08abe9e_JaffaCakes118

  • Size

    728KB

  • Sample

    240626-z5b5ssthqd

  • MD5

    137d505b3e1f5b9d563533ebd08abe9e

  • SHA1

    6c9935c160e4dddfe512ca74ed805d7a84d00720

  • SHA256

    542379541402d80839dee2f0c985f718f05d5853d3bfa8fa817fe582302fb47d

  • SHA512

    df85863ebc6c8d3cdcea4cf162c439a90db2de9f39dc84b9b47f875fa02b8068d6cb90831484dc812e81478ab815f6898fefbffceb45b9218d0d2fee3b653100

  • SSDEEP

    12288:DFHtM9Cuyv9SMLb9shorUeCpd0AoshXKYT9JtscMGxJ8lbKka17rzxpvtfOT0OJy:DMyv9SMLJsbTEWT9lMWmK/17MTHs

Score
7/10

Malware Config

Targets

    • Target

      137d505b3e1f5b9d563533ebd08abe9e_JaffaCakes118

    • Size

      728KB

    • MD5

      137d505b3e1f5b9d563533ebd08abe9e

    • SHA1

      6c9935c160e4dddfe512ca74ed805d7a84d00720

    • SHA256

      542379541402d80839dee2f0c985f718f05d5853d3bfa8fa817fe582302fb47d

    • SHA512

      df85863ebc6c8d3cdcea4cf162c439a90db2de9f39dc84b9b47f875fa02b8068d6cb90831484dc812e81478ab815f6898fefbffceb45b9218d0d2fee3b653100

    • SSDEEP

      12288:DFHtM9Cuyv9SMLb9shorUeCpd0AoshXKYT9JtscMGxJ8lbKka17rzxpvtfOT0OJy:DMyv9SMLJsbTEWT9lMWmK/17MTHs

    Score
    7/10
    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks