Overview

overview

8

Static

static

7

JaffaCakes...aa.exe

windows7-x64

8

JaffaCakes...aa.exe

windows10-2004-x64

8

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_8a9f78b45ce85e2a8288e2a5f4ca89aa

  • Size

    174KB

  • Sample

    250328-nfvp3avxcs

  • MD5

    8a9f78b45ce85e2a8288e2a5f4ca89aa

  • SHA1

    bac58c2681aa04ff98e73af10d5a3f566dad9119

  • SHA256

    2afa1263c47b3a4830cb948607a097136cb0cde6205bc8a0665a313632d607f9

  • SHA512

    82bf6a4dc966bd730ae5907544a68239ff0feda629056403ac285fac237961627ce589f4c8b3e48fbb8ba1eb75fbf58282f73deb6993ba745cb819463f2068b2

  • SSDEEP

    3072:l+BC3K5eqZB6Kvf3t9Aeq7t6/F69v4k4BP7GzZAEbvAMFGm3rpPQ:HK7ZBzH3e8N69v4DW6EjxvlPQ

Score
8/10
discoveryvmprotect

Malware Config

Targets

    • Target

      JaffaCakes118_8a9f78b45ce85e2a8288e2a5f4ca89aa

    • Size

      174KB

    • MD5

      8a9f78b45ce85e2a8288e2a5f4ca89aa

    • SHA1

      bac58c2681aa04ff98e73af10d5a3f566dad9119

    • SHA256

      2afa1263c47b3a4830cb948607a097136cb0cde6205bc8a0665a313632d607f9

    • SHA512

      82bf6a4dc966bd730ae5907544a68239ff0feda629056403ac285fac237961627ce589f4c8b3e48fbb8ba1eb75fbf58282f73deb6993ba745cb819463f2068b2

    • SSDEEP

      3072:l+BC3K5eqZB6Kvf3t9Aeq7t6/F69v4k4BP7GzZAEbvAMFGm3rpPQ:HK7ZBzH3e8N69v4DW6EjxvlPQ

    Score
    8/10
    vmprotectdiscovery

    • Drops file in Drivers directory

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

      vmprotect

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks