General
-
Target
713384267f32032e3b40709233b24d25_JaffaCakes118
-
Size
5.2MB
-
Sample
240725-zq9graxdkf
-
MD5
713384267f32032e3b40709233b24d25
-
SHA1
b55b21555138b1703f0e1f04e6bcb0bfb73c9596
-
SHA256
0b42a3302de1af694ac2177e138abe4b18373ee839342e344abc73599b84d922
-
SHA512
91652903b22b121cfb6d9423c6b81a6ec1a79a1bd1f3e8cf6a6c14324271afdbe9d7de4afed01ba291ebce3fae5704cea71da09dc4d3138cedbbaf904aeb478b
-
SSDEEP
24576:FONJfEhbirm40vX5W1tRNlvak3o3lGoP2P7LscHauCbg1a7GjtaFhOc0urg0Nr7+:FIp8iGvpKL3oFus6V2UGhbSD9
Behavioral task
behavioral1
Sample
713384267f32032e3b40709233b24d25_JaffaCakes118.exe
Resource
win7-20240708-en
Behavioral task
behavioral2
Sample
713384267f32032e3b40709233b24d25_JaffaCakes118.exe
Resource
win10v2004-20240709-en
Malware Config
Targets
-
-
Target
713384267f32032e3b40709233b24d25_JaffaCakes118
-
Size
5.2MB
-
MD5
713384267f32032e3b40709233b24d25
-
SHA1
b55b21555138b1703f0e1f04e6bcb0bfb73c9596
-
SHA256
0b42a3302de1af694ac2177e138abe4b18373ee839342e344abc73599b84d922
-
SHA512
91652903b22b121cfb6d9423c6b81a6ec1a79a1bd1f3e8cf6a6c14324271afdbe9d7de4afed01ba291ebce3fae5704cea71da09dc4d3138cedbbaf904aeb478b
-
SSDEEP
24576:FONJfEhbirm40vX5W1tRNlvak3o3lGoP2P7LscHauCbg1a7GjtaFhOc0urg0Nr7+:FIp8iGvpKL3oFus6V2UGhbSD9
Score7/10-
Loads dropped DLL
-
Obfuscated with Agile.Net obfuscator
Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-