Overview

overview

7

Static

static

7

dd33a8b54a...18.dll

windows7-x64

7

dd33a8b54a...18.dll

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    dd33a8b54a24871ac1fed50ba61f5f8b_JaffaCakes118

  • Size

    34KB

  • Sample

    240912-2zpj2s1bjg

  • MD5

    dd33a8b54a24871ac1fed50ba61f5f8b

  • SHA1

    a424a050fa43cdba0159bde9435fbd32e7c10e7e

  • SHA256

    aac52498edc951858affe113cae0d3bb0748cd00d5f061ff29b679edacf3a5e7

  • SHA512

    5429ea17807c76dc43e713c00874da9488f592dfe687e2301321b08ad4c2092a73ecc7739f90d7356a7505aa042a51f1b6c31caa600d09a366ff4b1c9f3cedbe

  • SSDEEP

    768:MgeUxHpbt4Vw3N0e2YkDVjK4trS2x7SoI/9WOBw61PafhCnbcuyD7UAfa:MxUHt4Vwd0nYSZJko6FC4nouy8Afa

Score
7/10
defense_evasiondiscoveryprivilege_escalationupx

Malware Config

Targets

    • Target

      dd33a8b54a24871ac1fed50ba61f5f8b_JaffaCakes118

    • Size

      34KB

    • MD5

      dd33a8b54a24871ac1fed50ba61f5f8b

    • SHA1

      a424a050fa43cdba0159bde9435fbd32e7c10e7e

    • SHA256

      aac52498edc951858affe113cae0d3bb0748cd00d5f061ff29b679edacf3a5e7

    • SHA512

      5429ea17807c76dc43e713c00874da9488f592dfe687e2301321b08ad4c2092a73ecc7739f90d7356a7505aa042a51f1b6c31caa600d09a366ff4b1c9f3cedbe

    • SSDEEP

      768:MgeUxHpbt4Vw3N0e2YkDVjK4trS2x7SoI/9WOBw61PafhCnbcuyD7UAfa:MxUHt4Vwd0nYSZJko6FC4nouy8Afa

    Score
    7/10
    defense_evasiondiscoveryprivilege_escalationupx

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks