68309a50ec895bd2338f69540613d8001c6d6f54088377017c586f3095ceeb06 | Triage

Submit
Reports

Overview

overview

8

Static

static

7

726fb6ad8d...18.exe

windows7-x64

8

726fb6ad8d...18.exe

windows10-2004-x64

8

Sharing

General

Target

726fb6ad8d4f2e3f0baa772716086b7d_JaffaCakes118
Size

405KB
Sample

240726-d3zmesxbra
MD5

726fb6ad8d4f2e3f0baa772716086b7d
SHA1

d7be333f1ad714bdcab8a4fd08355bd054b46299
SHA256

68309a50ec895bd2338f69540613d8001c6d6f54088377017c586f3095ceeb06
SHA512

1c6f221f27c9a0f42a28b6b6fdc42b6402924831297c77473567131cb051c6c83ca4a187a9966b4f0ca8dcab7ca38f1797bb64a2ed9ea231ae777e3838ad6821
SSDEEP

12288:iiGQKNNyxxNNNehbNeeeMo11eo3lVPAn1hL8UjB/YwX:iiGQKNNyxxNNNehbNeeeT11eDn1p8Uj9

Score

8^/10

discovery evasion trojan vmprotect

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

726fb6ad8d4f2e3f0baa772716086b7d_JaffaCakes118.exe

Resource

win7-20240708-en

discovery evasion trojan vmprotect

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

726fb6ad8d4f2e3f0baa772716086b7d_JaffaCakes118.exe

Resource

win10v2004-20240709-en

discovery evasion trojan vmprotect

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  726fb6ad8d4f2e3f0baa772716086b7d_JaffaCakes118
- Size
  
  405KB
- MD5
  
  726fb6ad8d4f2e3f0baa772716086b7d
- SHA1
  
  d7be333f1ad714bdcab8a4fd08355bd054b46299
- SHA256
  
  68309a50ec895bd2338f69540613d8001c6d6f54088377017c586f3095ceeb06
- SHA512
  
  1c6f221f27c9a0f42a28b6b6fdc42b6402924831297c77473567131cb051c6c83ca4a187a9966b4f0ca8dcab7ca38f1797bb64a2ed9ea231ae777e3838ad6821
- SSDEEP
  
  12288:iiGQKNNyxxNNNehbNeeeMo11eo3lVPAn1hL8UjB/YwX:iiGQKNNyxxNNNehbNeeeT11eDn1p8Uj9
Score

8^/10

discovery evasion trojan vmprotect
- Drops file in Drivers directory
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Checks whether UAC is enabled
  evasion trojan
- Drops file in System32 directory
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

discoveryevasiontrojanvmprotect

behavioral2

discoveryevasiontrojanvmprotect

© 2018-2025

Terms | Privacy