General
-
Target
1ac7fa79d2fafc8761a27e00205b2323_JaffaCakes118
-
Size
687KB
-
Sample
240701-lhz2fsxcqr
-
MD5
1ac7fa79d2fafc8761a27e00205b2323
-
SHA1
0f0318bd7d09bf0e4dfdd98bd46e5bcb32882034
-
SHA256
17796cb53465a689656445f745116e3807939117209d49be20ec96b333f2df97
-
SHA512
5dc138eac6002abb57aeb999200d65055c174ab4222c7bb1e197685b0fdf9b5befd732fe1fba6c7ffaa29c463bdad565a638349a3b0a7acf372fdee4b1e68425
-
SSDEEP
12288:EgBiRawl33JbJlVJwTuejuPuZ+4Y7Uklxk1pwH1bLzj2TOeOrBPohn2Trj/Mo4Um:EgiRhdfe6Pz77VlOUHdLGTOesBW2TrjI
Malware Config
Targets
-
-
Target
1ac7fa79d2fafc8761a27e00205b2323_JaffaCakes118
-
Size
687KB
-
MD5
1ac7fa79d2fafc8761a27e00205b2323
-
SHA1
0f0318bd7d09bf0e4dfdd98bd46e5bcb32882034
-
SHA256
17796cb53465a689656445f745116e3807939117209d49be20ec96b333f2df97
-
SHA512
5dc138eac6002abb57aeb999200d65055c174ab4222c7bb1e197685b0fdf9b5befd732fe1fba6c7ffaa29c463bdad565a638349a3b0a7acf372fdee4b1e68425
-
SSDEEP
12288:EgBiRawl33JbJlVJwTuejuPuZ+4Y7Uklxk1pwH1bLzj2TOeOrBPohn2Trj/Mo4Um:EgiRhdfe6Pz77VlOUHdLGTOesBW2TrjI
Score7/10-
Identifies Wine through registry keys
Wine is a compatibility layer capable of running Windows applications, which can be used as sandboxing environment.
-
Themida packer
Detects Themida, an advanced Windows software protection system.
-
Suspicious use of NtSetInformationThreadHideFromDebugger
-