Overview

overview

7

Static

static

3

72ec8925b8...18.exe

windows7-x64

7

72ec8925b8...18.exe

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    72ec8925b8a71e8756bc25941cdbc85a_JaffaCakes118

  • Size

    267KB

  • Sample

    240726-g7m1za1frn

  • MD5

    72ec8925b8a71e8756bc25941cdbc85a

  • SHA1

    c576ac60b3166e57c7782d8f808ddb86279a2892

  • SHA256

    c6ce4fdd22b4053a72356d044b39752f1534b1f5459863dbbcd2c94157bdc5a8

  • SHA512

    8515e2b70b31a84927384ff18277248ad0bb80f33091feaaf6706777233e6638cde41b80af8254be4628248a52b90fab3c0887725c7041e12a1911ad9142a433

  • SSDEEP

    6144:TO//AV7U++3nY7AlWgn/b95lR9g1UHsk4:a/IVcI70z9HR9XsZ

Score
7/10
aspackv2discoverypersistenceupxvmprotect

Malware Config

Targets

    • Target

      72ec8925b8a71e8756bc25941cdbc85a_JaffaCakes118

    • Size

      267KB

    • MD5

      72ec8925b8a71e8756bc25941cdbc85a

    • SHA1

      c576ac60b3166e57c7782d8f808ddb86279a2892

    • SHA256

      c6ce4fdd22b4053a72356d044b39752f1534b1f5459863dbbcd2c94157bdc5a8

    • SHA512

      8515e2b70b31a84927384ff18277248ad0bb80f33091feaaf6706777233e6638cde41b80af8254be4628248a52b90fab3c0887725c7041e12a1911ad9142a433

    • SSDEEP

      6144:TO//AV7U++3nY7AlWgn/b95lR9g1UHsk4:a/IVcI70z9HR9XsZ

    Score
    7/10
    aspackv2discoverypersistenceupxvmprotect

    • ASPack v2.12-2.42

      Detects executables packed with ASPack v2.12-2.42

      aspackv2

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Adds Run key to start application

      persistence
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks