95c73efdd047b2b96364c26c59d72802275706786d0da697752aca0c0e1375e0 | Triage

Submit
Reports

Overview

overview

7

Static

static

7

1f36a6ee98...18.exe

windows7-x64

7

1f36a6ee98...18.exe

windows10-2004-x64

7

Sharing

General

Target

1f36a6ee98e0e4478cf2be4db72c9cee_JaffaCakes118
Size

1.8MB
Sample

240702-nwezjsvcnn
MD5

1f36a6ee98e0e4478cf2be4db72c9cee
SHA1

57f49b30f12e66ea3568e78404ead6b85791459e
SHA256

95c73efdd047b2b96364c26c59d72802275706786d0da697752aca0c0e1375e0
SHA512

5ef63d91dafc36fedfcb70ec503c440dddf72ff609717d37cc2c9e5d867e86edd8d65ddbcd1ea96f21e8e0890157a19da49126a074ecb2b9a137634a5a7bb69c
SSDEEP

49152:a0aE/tX3RpFGPHEqtoqN9L+xTh6wGTcMTRbL:a0awfFgkXrxTh6EM

Score

7^/10

Static task

static1

2 signatures

Behavioral task

behavioral1

Sample

1f36a6ee98e0e4478cf2be4db72c9cee_JaffaCakes118.exe

Resource

win7-20240508-en

windows7-x64

5 signatures

150 seconds

Behavioral task

behavioral2

Sample

1f36a6ee98e0e4478cf2be4db72c9cee_JaffaCakes118.exe

Resource

win10v2004-20240611-en

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  1f36a6ee98e0e4478cf2be4db72c9cee_JaffaCakes118
- Size
  
  1.8MB
- MD5
  
  1f36a6ee98e0e4478cf2be4db72c9cee
- SHA1
  
  57f49b30f12e66ea3568e78404ead6b85791459e
- SHA256
  
  95c73efdd047b2b96364c26c59d72802275706786d0da697752aca0c0e1375e0
- SHA512
  
  5ef63d91dafc36fedfcb70ec503c440dddf72ff609717d37cc2c9e5d867e86edd8d65ddbcd1ea96f21e8e0890157a19da49126a074ecb2b9a137634a5a7bb69c
- SSDEEP
  
  49152:a0aE/tX3RpFGPHEqtoqN9L+xTh6wGTcMTRbL:a0awfFgkXrxTh6EM
Score

7^/10

vmprotect
- VMProtect packed file
  Detects executables packed with VMProtect commercial packer.
  vmprotect
- Suspicious use of NtSetInformationThreadHideFromDebugger
behavioral1 behavioral2

MITRE ATT&CK Matrix ATT&CK v13

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Modify Registry

Credential Access

Discovery

System Information Discovery

Lateral Movement

Collection

Exfiltration

Command and Control

Impact

Resource Development

Reconnaissance

Tasks

static1

behavioral1

behavioral2

© 2018-2024

Terms | Privacy