Overview

overview

7

Static

static

7

dee0d32c2f...18.exe

windows7-x64

7

dee0d32c2f...18.exe

windows10-2004-x64

7

Sharing

Copy URL Twitter E-mail

General

  • Target

    dee0d32c2f5205ea1398bef5e25d1022_JaffaCakes118

  • Size

    2.1MB

  • Sample

    240913-zm6xfsyemg

  • MD5

    dee0d32c2f5205ea1398bef5e25d1022

  • SHA1

    9ac94bb2c29d6a4ab1d07b42440561d44b8b52b0

  • SHA256

    433bf30847dddbed9471cc3aa80e3e4e23690ec992f091f2d87dabf56dc4ca30

  • SHA512

    96520ba1f71145f4b35a2c74d57149d139061736947d808a09e59e58385c59e3a0941b603d647f9494104846fd846158abd43192326587cf5739e235f36b82c3

  • SSDEEP

    24576:4oJ9ruP9vf5Geh3wUsDcARcst4ofwwa2L2hfLjtkaDagw8uKTWItIHqrx9nJP4LD:4G9SR5Gg3wJ4lZ2sfVZ48ubC0qXJPQR

Score
7/10
discoveryevasionthemida

Malware Config

Targets

    • Target

      dee0d32c2f5205ea1398bef5e25d1022_JaffaCakes118

    • Size

      2.1MB

    • MD5

      dee0d32c2f5205ea1398bef5e25d1022

    • SHA1

      9ac94bb2c29d6a4ab1d07b42440561d44b8b52b0

    • SHA256

      433bf30847dddbed9471cc3aa80e3e4e23690ec992f091f2d87dabf56dc4ca30

    • SHA512

      96520ba1f71145f4b35a2c74d57149d139061736947d808a09e59e58385c59e3a0941b603d647f9494104846fd846158abd43192326587cf5739e235f36b82c3

    • SSDEEP

      24576:4oJ9ruP9vf5Geh3wUsDcARcst4ofwwa2L2hfLjtkaDagw8uKTWItIHqrx9nJP4LD:4G9SR5Gg3wJ4lZ2sfVZ48ubC0qXJPQR

    Score
    7/10
    discoveryevasionthemida

    • Identifies Wine through registry keys

      Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.

      evasion

    • Themida packer

      Detects Themida, an advanced Windows software protection system.

      themida
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks