Overview

overview

7

Static

static

7

1c98744642...18.dll

windows7-x64

7

1c98744642...18.dll

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    1c98744642deda411a4d865c3c7e9f04_JaffaCakes118

  • Size

    39KB

  • Sample

    240701-1j6yqa1fma

  • MD5

    1c98744642deda411a4d865c3c7e9f04

  • SHA1

    80872620b01ba3defd2b51ce4058a6f2fac2d628

  • SHA256

    a8c967c93700cb835741e03a188e4d72da624d5bb350a26076d44b7b60836576

  • SHA512

    b1368dfda300db79450058ec09109263e111a50101ffaed704cff53b454f323791134bcfcb5bad5451d5a98af1404669fe7a636519b1feff571d26488e28920e

  • SSDEEP

    768:a3Uz76rYwBJ01XiBkrLDmAtp6eZiGZxT1UDB5bKaqJeT9oATnbcuyD7Uv:aEaEwUBiBCLDmA1ZjUDr0jATnouy8v

Score
7/10
defense_evasionprivilege_escalationupx

Malware Config

Targets

    • Target

      1c98744642deda411a4d865c3c7e9f04_JaffaCakes118

    • Size

      39KB

    • MD5

      1c98744642deda411a4d865c3c7e9f04

    • SHA1

      80872620b01ba3defd2b51ce4058a6f2fac2d628

    • SHA256

      a8c967c93700cb835741e03a188e4d72da624d5bb350a26076d44b7b60836576

    • SHA512

      b1368dfda300db79450058ec09109263e111a50101ffaed704cff53b454f323791134bcfcb5bad5451d5a98af1404669fe7a636519b1feff571d26488e28920e

    • SSDEEP

      768:a3Uz76rYwBJ01XiBkrLDmAtp6eZiGZxT1UDB5bKaqJeT9oATnbcuyD7Uv:aEaEwUBiBCLDmA1ZjUDr0jATnouy8v

    Score
    7/10
    defense_evasionprivilege_escalationupx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks