Overview

overview

7

Static

static

7

6f92009617...18.dll

windows7-x64

7

6f92009617...18.dll

windows10-2004-x64

7

Sharing

Copy URL
Twitter E-mail

General

  • Target

    6f920096174e878a8cd2191c25f3fe78_JaffaCakes118

  • Size

    816KB

  • Sample

    241023-ska9fawfrb

  • MD5

    6f920096174e878a8cd2191c25f3fe78

  • SHA1

    6de7ab44a5b3d80830f121ae68f98833a72030b7

  • SHA256

    b185b2f493cc8f1f0c1d7f96e0909e0ff097761197c38fc5e0c6b4c92344acbc

  • SHA512

    2aafbe7126b614c1589bd0f7c8fc3f66c015a42102d897b868d8714d7f746d22a94b157acba593a384900bf311132eba605bb10354db4f27120aa8d5510e6767

  • SSDEEP

    12288:A116zXjHjXdYQoo219k7+/hwx3XP07tLdleA8YVmtaXAb8MuC:An6aQ72E7+pwx3XP07tLiAPmtaXAAhC

Score
7/10
discoveryvmprotect

Malware Config

Targets

    • Target

      6f920096174e878a8cd2191c25f3fe78_JaffaCakes118

    • Size

      816KB

    • MD5

      6f920096174e878a8cd2191c25f3fe78

    • SHA1

      6de7ab44a5b3d80830f121ae68f98833a72030b7

    • SHA256

      b185b2f493cc8f1f0c1d7f96e0909e0ff097761197c38fc5e0c6b4c92344acbc

    • SHA512

      2aafbe7126b614c1589bd0f7c8fc3f66c015a42102d897b868d8714d7f746d22a94b157acba593a384900bf311132eba605bb10354db4f27120aa8d5510e6767

    • SSDEEP

      12288:A116zXjHjXdYQoo219k7+/hwx3XP07tLdleA8YVmtaXAb8MuC:An6aQ72E7+pwx3XP07tLiAPmtaXAAhC

    Score
    7/10
    discoveryvmprotect

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Suspicious use of NtSetInformationThreadHideFromDebugger

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks