Overview

overview

7

Static

static

7

67f2601d90...18.exe

windows7-x64

7

67f2601d90...18.exe

windows10-2004-x64

1

Sharing

Copy URL Twitter E-mail

General

  • Target

    67f2601d9056a35c95df36337d8dcc71_JaffaCakes118

  • Size

    3.3MB

  • Sample

    240723-rtsdmsvdmk

  • MD5

    67f2601d9056a35c95df36337d8dcc71

  • SHA1

    1495ce763ec98ab9a5d10e7d7bd98cff7fc89171

  • SHA256

    5db336c552460b77f8bff10cb36499f9d9ae429f10a1f032555c1e8ea3e62775

  • SHA512

    0e5570b77322a163bf7846f03803aecf3be806f8643456e6cc3037e48a0b064a4e85e9397075a6766f0659dcd340bbbe7ecd6c9099ebf1e0f472f5a6a802e847

  • SSDEEP

    98304:8Io/8FY3XjbHknFBiNSqoQ0mlQg98e8ASHMT:hoUi3XHHknfS4QEg98nsT

Score
7/10
persistencethemida

Malware Config

Targets

    • Target

      67f2601d9056a35c95df36337d8dcc71_JaffaCakes118

    • Size

      3.3MB

    • MD5

      67f2601d9056a35c95df36337d8dcc71

    • SHA1

      1495ce763ec98ab9a5d10e7d7bd98cff7fc89171

    • SHA256

      5db336c552460b77f8bff10cb36499f9d9ae429f10a1f032555c1e8ea3e62775

    • SHA512

      0e5570b77322a163bf7846f03803aecf3be806f8643456e6cc3037e48a0b064a4e85e9397075a6766f0659dcd340bbbe7ecd6c9099ebf1e0f472f5a6a802e847

    • SSDEEP

      98304:8Io/8FY3XjbHknFBiNSqoQ0mlQg98e8ASHMT:hoUi3XHHknfS4QEg98nsT

    Score
    7/10
    persistencethemida

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

      themida

    • Adds Run key to start application

      persistence

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks