Overview

overview

7

Static

static

7

709c9b59fa...18.exe

windows7-x64

7

709c9b59fa...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    709c9b59fa50fcbe1c7eb046fde64021_JaffaCakes118

  • Size

    708KB

  • Sample

    240725-wce47syajf

  • MD5

    709c9b59fa50fcbe1c7eb046fde64021

  • SHA1

    0119a788e5210b69540fd89a1188e085bf23b70d

  • SHA256

    1eb59972e7f739068e39fcc486b47789cab245b866370c6e8ff7ee065bad4f64

  • SHA512

    f787951990d9b2367826cd8b7579131c623c94b1ec41ecaffaafead3566175d2ee729d40538427741a1def09f9405b9f5f708c27cb48c628ed853915f42bbdae

  • SSDEEP

    12288:Os6sZF+bUWzBw2oXrvd5YxvdULc35GExk8otJklcwDpbsg+CLy/HbyknW8X:O+0b7G2oz7qNpoMcwDRx+CO/XnWW

Score
7/10
discoveryvmprotect

Malware Config

Targets

    • Target

      709c9b59fa50fcbe1c7eb046fde64021_JaffaCakes118

    • Size

      708KB

    • MD5

      709c9b59fa50fcbe1c7eb046fde64021

    • SHA1

      0119a788e5210b69540fd89a1188e085bf23b70d

    • SHA256

      1eb59972e7f739068e39fcc486b47789cab245b866370c6e8ff7ee065bad4f64

    • SHA512

      f787951990d9b2367826cd8b7579131c623c94b1ec41ecaffaafead3566175d2ee729d40538427741a1def09f9405b9f5f708c27cb48c628ed853915f42bbdae

    • SSDEEP

      12288:Os6sZF+bUWzBw2oXrvd5YxvdULc35GExk8otJklcwDpbsg+CLy/HbyknW8X:O+0b7G2oz7qNpoMcwDRx+CO/XnWW

    Score
    7/10
    discoveryvmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks