ammyyadmin | 1fce98b97b44385c9d6d685781ca3bfe7b0afc666305db3546d83eaac73e5f28 | Triage

Submit
Reports

Overview

overview

Static

static

3b69f92515...18.exe

windows7-x64

3b69f92515...18.exe

windows10-2004-x64

Sharing

General

Target

3b69f9251541d2ec23ca85c913d3680e_JaffaCakes118
Size

768KB
Sample

240512-wre3race63
MD5

3b69f9251541d2ec23ca85c913d3680e
SHA1

edb3c5a5acf0cd22546a60de111497833917cff6
SHA256

1fce98b97b44385c9d6d685781ca3bfe7b0afc666305db3546d83eaac73e5f28
SHA512

e2c775ea9c7b6e5010bd9c1a122cd26b285dba65451a0507e4e90bc130588c0cb783bcc780fda8d72351acc17966cb0b13dae774c7856b36d4bf64944d679c50
SSDEEP

12288:XXe1Z2fJipMHEgSeA6M7kmchJGvRuORtcE9qTpy+Yg0HkV+dgI:HtkmHEgSewkmchJGsORtn9qT8+Yg03eI

Score

10^/10

ammyyadmin flawedammyy trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

3b69f9251541d2ec23ca85c913d3680e_JaffaCakes118.exe

Resource

win7-20240508-en

flawedammyy trojan

windows7-x64

3 signatures

150 seconds

Behavioral task

behavioral2

Sample

3b69f9251541d2ec23ca85c913d3680e_JaffaCakes118.exe

Resource

win10v2004-20240508-en

flawedammyy trojan

windows10-2004-x64

2 signatures

150 seconds

Malware Config

Targets

- Target
  
  3b69f9251541d2ec23ca85c913d3680e_JaffaCakes118
- Size
  
  768KB
- MD5
  
  3b69f9251541d2ec23ca85c913d3680e
- SHA1
  
  edb3c5a5acf0cd22546a60de111497833917cff6
- SHA256
  
  1fce98b97b44385c9d6d685781ca3bfe7b0afc666305db3546d83eaac73e5f28
- SHA512
  
  e2c775ea9c7b6e5010bd9c1a122cd26b285dba65451a0507e4e90bc130588c0cb783bcc780fda8d72351acc17966cb0b13dae774c7856b36d4bf64944d679c50
- SSDEEP
  
  12288:XXe1Z2fJipMHEgSeA6M7kmchJGvRuORtcE9qTpy+Yg0HkV+dgI:HtkmHEgSewkmchJGsORtn9qT8+Yg03eI
Score

10^/10

flawedammyy trojan
- FlawedAmmyy RAT
  Remote-access trojan based on leaked code for the Ammyy remote admin software.
  trojan flawedammyy
behavioral1 behavioral2

MITRE ATT&CK Matrix

Tasks

static1

behavioral1

flawedammyytrojan

behavioral2

flawedammyytrojan

© 2018-2024

Terms | Privacy