a027fbd600e5485b2ea9e3d4c7982578ac75efe0cce5f230541d841afa55ec4c | Triage

Submit
Reports

Overview

overview

7

Static

static

7

de91696225...18.exe

windows7-x64

7

de91696225...18.exe

windows10-2004-x64

7

Sharing

General

Target

de91696225b79f67e969493fa4a62300_JaffaCakes118
Size

5.5MB
Sample

240913-v25kqazckh
MD5

de91696225b79f67e969493fa4a62300
SHA1

81e4b775c5e417d0466ca31ec2ec89484a264c5c
SHA256

a027fbd600e5485b2ea9e3d4c7982578ac75efe0cce5f230541d841afa55ec4c
SHA512

b7d88b706217e3d5a7daa189d6bd8ab79cb43255f34ce0f8e7def137e3ee96bea6c39ec451eebab6fa92e42475f4c3009666dd8054840a0d1eb1a14da8b61cae
SSDEEP

98304:xsbsKcTpcf+ge5cU+46AcII5NEPV5MC3PIju5I+eqOaXiZN3:xyrmgeeSpOCauy/ayZ

Score

7^/10

vmprotect

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

de91696225b79f67e969493fa4a62300_JaffaCakes118.exe

Resource

win7-20240903-en

windows7-x64

6 signatures

150 seconds

Behavioral task

behavioral2

Sample

de91696225b79f67e969493fa4a62300_JaffaCakes118.exe

Resource

win10v2004-20240802-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  de91696225b79f67e969493fa4a62300_JaffaCakes118
- Size
  
  5.5MB
- MD5
  
  de91696225b79f67e969493fa4a62300
- SHA1
  
  81e4b775c5e417d0466ca31ec2ec89484a264c5c
- SHA256
  
  a027fbd600e5485b2ea9e3d4c7982578ac75efe0cce5f230541d841afa55ec4c
- SHA512
  
  b7d88b706217e3d5a7daa189d6bd8ab79cb43255f34ce0f8e7def137e3ee96bea6c39ec451eebab6fa92e42475f4c3009666dd8054840a0d1eb1a14da8b61cae
- SSDEEP
  
  98304:xsbsKcTpcf+ge5cU+46AcII5NEPV5MC3PIju5I+eqOaXiZN3:xyrmgeeSpOCauy/ayZ
Score

7^/10

vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Suspicious use of NtCreateThreadExHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2025

Terms | Privacy