d144cb7a0a0be9a3e9ac2a052192821c62567311a02ba4c1d17f36c1645f9d41 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

1b2994247b...18.exe

windows7-x64

7

1b2994247b...18.exe

windows10-2004-x64

7

Sharing

General

Target

1b2994247bb30f34d0f7ffbd946167b8_JaffaCakes118
Size

4.0MB
Sample

240701-nvbwhasgpp
MD5

1b2994247bb30f34d0f7ffbd946167b8
SHA1

e627b77eb6f4af5955172c0d8336485b0c56bdc3
SHA256

d144cb7a0a0be9a3e9ac2a052192821c62567311a02ba4c1d17f36c1645f9d41
SHA512

d9b8180573cb3358135c3cb56a7ab31b9b95bde8a0890a87e5f4e3355f2675aa0a52839f491a64ae3ebd54dc0889c40766366a3b7d290559daa1ede6ca4a2ec2
SSDEEP

98304:6WS9rzT+AnlasvtiGqPrYbSBgOQ7885oucy/+NMumE57VgQCnRlvQaHhXCWPZ0Vq:6WS9rzznllAlPkbmQ78KouROMuBFVg5X

Score

7^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

1b2994247bb30f34d0f7ffbd946167b8_JaffaCakes118.exe

Resource

win7-20240611-en

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

1b2994247bb30f34d0f7ffbd946167b8_JaffaCakes118.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  1b2994247bb30f34d0f7ffbd946167b8_JaffaCakes118
- Size
  
  4.0MB
- MD5
  
  1b2994247bb30f34d0f7ffbd946167b8
- SHA1
  
  e627b77eb6f4af5955172c0d8336485b0c56bdc3
- SHA256
  
  d144cb7a0a0be9a3e9ac2a052192821c62567311a02ba4c1d17f36c1645f9d41
- SHA512
  
  d9b8180573cb3358135c3cb56a7ab31b9b95bde8a0890a87e5f4e3355f2675aa0a52839f491a64ae3ebd54dc0889c40766366a3b7d290559daa1ede6ca4a2ec2
- SSDEEP
  
  98304:6WS9rzT+AnlasvtiGqPrYbSBgOQ7885oucy/+NMumE57VgQCnRlvQaHhXCWPZ0Vq:6WS9rzznllAlPkbmQ78KouROMuBFVg5X
Score

7^/10

vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy