Overview

overview

7

Static

static

7

c0e0b659ee...18.exe

windows7-x64

7

c0e0b659ee...18.exe

windows10-2004-x64

3

Sharing

Copy URL Twitter E-mail

General

  • Target

    c0e0b659eecf02fe6170b8b3c309b143_JaffaCakes118

  • Size

    1.1MB

  • Sample

    240825-q5lvkaygrp

  • MD5

    c0e0b659eecf02fe6170b8b3c309b143

  • SHA1

    6e448f13224c0273969a1e050f7441b229cb0aa8

  • SHA256

    29192c865b623585b24a068513c40871e4cca4b79e0a81044b383ab62752ed2e

  • SHA512

    8d4e662aa31a543760d29d080425dd6872dfc712aeb1eb2e756137d195d67262d478288ce68dead004deac2063dc8c6f21c2169d898e1d2ba37bff6e49cf8b64

  • SSDEEP

    24576:8CLp12csRNJECtmYbuzhSsX2GuC7VF3Lbb5XnnktVD:hvNsvKUmYkhbM8lxXn

Score
7/10
discoverythemida

Malware Config

Targets

    • Target

      c0e0b659eecf02fe6170b8b3c309b143_JaffaCakes118

    • Size

      1.1MB

    • MD5

      c0e0b659eecf02fe6170b8b3c309b143

    • SHA1

      6e448f13224c0273969a1e050f7441b229cb0aa8

    • SHA256

      29192c865b623585b24a068513c40871e4cca4b79e0a81044b383ab62752ed2e

    • SHA512

      8d4e662aa31a543760d29d080425dd6872dfc712aeb1eb2e756137d195d67262d478288ce68dead004deac2063dc8c6f21c2169d898e1d2ba37bff6e49cf8b64

    • SSDEEP

      24576:8CLp12csRNJECtmYbuzhSsX2GuC7VF3Lbb5XnnktVD:hvNsvKUmYkhbM8lxXn

    Score
    7/10
    discoverythemida

    • Executes dropped EXE

    • Loads dropped DLL

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

      themida

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks