Overview

overview

7

Static

static

3

dab371da93...18.exe

windows7-x64

7

dab371da93...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    dab371da93f73495a367526c7ac0ce68_JaffaCakes118

  • Size

    262KB

  • Sample

    240911-tch5rayglq

  • MD5

    dab371da93f73495a367526c7ac0ce68

  • SHA1

    d35d7225d74180e3cf58e98007daecd1df4e9c7f

  • SHA256

    22917662a82263527c8e918250d84476598242c19e1c999ba15ee81b526a452d

  • SHA512

    eb32ea0bb514435198ef6e1a910e9a4a28b73266243b8890f5b850aa2ad9ab161535c00cf1bf16bd0938213d24f85a1bb1c3b183ded1783312b5904b9c8d1d67

  • SSDEEP

    3072:12JAKhdrBTXRDN+Ct8IodsMW11Kd/E6DnzWKYJqGoDwZ1KHFU2rlry9gKaQV+k/L:1cAK3bDZF16/dDnCRk8gi2s3zgkbIA

Score
7/10
discovery

Malware Config

Targets

    • Target

      dab371da93f73495a367526c7ac0ce68_JaffaCakes118

    • Size

      262KB

    • MD5

      dab371da93f73495a367526c7ac0ce68

    • SHA1

      d35d7225d74180e3cf58e98007daecd1df4e9c7f

    • SHA256

      22917662a82263527c8e918250d84476598242c19e1c999ba15ee81b526a452d

    • SHA512

      eb32ea0bb514435198ef6e1a910e9a4a28b73266243b8890f5b850aa2ad9ab161535c00cf1bf16bd0938213d24f85a1bb1c3b183ded1783312b5904b9c8d1d67

    • SSDEEP

      3072:12JAKhdrBTXRDN+Ct8IodsMW11Kd/E6DnzWKYJqGoDwZ1KHFU2rlry9gKaQV+k/L:1cAK3bDZF16/dDnCRk8gi2s3zgkbIA

    Score
    7/10
    discovery

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Drops startup file

    • Loads dropped DLL

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks