General

  • Target

    d2541bd2ec53cf45399a5d75348c2a7b_JaffaCakes118

  • Size

    5.2MB

  • Sample

    240907-tnamravama

  • MD5

    d2541bd2ec53cf45399a5d75348c2a7b

  • SHA1

    c49119cacc1906f828b82e4a23d0d578a1e24538

  • SHA256

    f3722895787e7650d7c03db827721051d34322eab458f2d3d15e07a5cd7e5827

  • SHA512

    e8fecacecb1fa29ded987f27087436fb4f460e3a8edec2f612cd75a3a5c63d0d1a6b30dc7e5631eade49eac2337e8054ca8e329c1e337b10f38fe115148edf28

  • SSDEEP

    24576:1VBNsqaslvaksHo/AlGoP2P7LscHauCbg1a7GjtaFhOc0urg0Nr74JEaUgOCd2Ey:lQssHo6us6VgfNMhb1no3X9

Score
7/10

Malware Config

Targets

    • Target

      d2541bd2ec53cf45399a5d75348c2a7b_JaffaCakes118

    • Size

      5.2MB

    • MD5

      d2541bd2ec53cf45399a5d75348c2a7b

    • SHA1

      c49119cacc1906f828b82e4a23d0d578a1e24538

    • SHA256

      f3722895787e7650d7c03db827721051d34322eab458f2d3d15e07a5cd7e5827

    • SHA512

      e8fecacecb1fa29ded987f27087436fb4f460e3a8edec2f612cd75a3a5c63d0d1a6b30dc7e5631eade49eac2337e8054ca8e329c1e337b10f38fe115148edf28

    • SSDEEP

      24576:1VBNsqaslvaksHo/AlGoP2P7LscHauCbg1a7GjtaFhOc0urg0Nr74JEaUgOCd2Ey:lQssHo6us6VgfNMhb1no3X9

    Score
    7/10
    • Loads dropped DLL

    • Obfuscated with Agile.Net obfuscator

      Detects use of the Agile.Net commercial obfuscator, which is capable of entity renaming and control flow obfuscation.

    • Suspicious use of NtSetInformationThreadHideFromDebugger

MITRE ATT&CK Matrix

Tasks