Overview

overview

10

Static

static

3

20833d55ee...18.exe

windows7-x64

10

20833d55ee...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    20833d55ee686ee4b5e3dca815a71cfe_JaffaCakes118

  • Size

    485KB

  • Sample

    240507-n9yzkshf75

  • MD5

    20833d55ee686ee4b5e3dca815a71cfe

  • SHA1

    9c44d4c2094dbe462a32d83e784ba30ed3526ee5

  • SHA256

    8e8941c4436c0c4666d8eb89429be7421341f051e1b07a73379c0505a9feeafe

  • SHA512

    2fcd668074474808b7130c34d888bd92be688794c4bb05b58ebad19565b7377ce69ad4ab729303401621718c9e4e3c44f17684d48a91a39684b4b9c0d948c7ef

  • SSDEEP

    12288:ITpppppppp/ppppppppppppppppppppppppppppppppppppppppcbW26hcshXq9R:IyWFhz1q9NQ89qGEoE8yG

Score
10/10
imminentspywaretrojan

Malware Config

Targets

    • Target

      20833d55ee686ee4b5e3dca815a71cfe_JaffaCakes118

    • Size

      485KB

    • MD5

      20833d55ee686ee4b5e3dca815a71cfe

    • SHA1

      9c44d4c2094dbe462a32d83e784ba30ed3526ee5

    • SHA256

      8e8941c4436c0c4666d8eb89429be7421341f051e1b07a73379c0505a9feeafe

    • SHA512

      2fcd668074474808b7130c34d888bd92be688794c4bb05b58ebad19565b7377ce69ad4ab729303401621718c9e4e3c44f17684d48a91a39684b4b9c0d948c7ef

    • SSDEEP

      12288:ITpppppppp/ppppppppppppppppppppppppppppppppppppppppcbW26hcshXq9R:IyWFhz1q9NQ89qGEoE8yG

    Score
    10/10
    imminentspywaretrojan

    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

      trojanspywareimminent

    • Drops startup file

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks