d6a06308d90b5deede07dfaa325734020a0133d750c1cd0fc3d613f89a1bc860 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

1f3df0bc76...18.dll

windows7-x64

7

1f3df0bc76...18.dll

windows10-2004-x64

7

Sharing

General

Target

1f3df0bc7627cf5ec9630cbc81f04269_JaffaCakes118
Size

1.1MB
Sample

240702-n2vl7aveqk
MD5

1f3df0bc7627cf5ec9630cbc81f04269
SHA1

21120085d56c40f44cb027565ea8c0fc3974e23b
SHA256

d6a06308d90b5deede07dfaa325734020a0133d750c1cd0fc3d613f89a1bc860
SHA512

04eabde464d2be21de85145063e493472a1fa68186edab89680eb449136df8a0a419a8d7397c20fe1e6eea5920de49b127baac0b83ea57d158f16dff447052f3
SSDEEP

24576:2skmTcD7O+grOcwUBjK5etMNIJlhjbhpZpgCk2EYex4t0r4:2VaQiDXtpIYei0r4

Score

7^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

1f3df0bc7627cf5ec9630cbc81f04269_JaffaCakes118.dll

Resource

win7-20240419-en

windows7-x64

8 signatures

150 seconds

Behavioral task

behavioral2

Sample

1f3df0bc7627cf5ec9630cbc81f04269_JaffaCakes118.dll

Resource

win10v2004-20240611-en

windows10-2004-x64

9 signatures

150 seconds

Malware Config

Targets

- Target
  
  1f3df0bc7627cf5ec9630cbc81f04269_JaffaCakes118
- Size
  
  1.1MB
- MD5
  
  1f3df0bc7627cf5ec9630cbc81f04269
- SHA1
  
  21120085d56c40f44cb027565ea8c0fc3974e23b
- SHA256
  
  d6a06308d90b5deede07dfaa325734020a0133d750c1cd0fc3d613f89a1bc860
- SHA512
  
  04eabde464d2be21de85145063e493472a1fa68186edab89680eb449136df8a0a419a8d7397c20fe1e6eea5920de49b127baac0b83ea57d158f16dff447052f3
- SSDEEP
  
  24576:2skmTcD7O+grOcwUBjK5etMNIJlhjbhpZpgCk2EYex4t0r4:2VaQiDXtpIYei0r4
Score

7^/10

upx vmprotect
- Loads dropped DLL
- UPX packed file
  Detects executables packed with UPX/modified UPX open source packer.
  upx
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy