Overview

overview

10

Static

static

3

469228ba7c...18.exe

windows7-x64

10

469228ba7c...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    469228ba7c6447707fa873abc5574f3f_JaffaCakes118

  • Size

    815KB

  • Sample

    240515-rmjg6adb6s

  • MD5

    469228ba7c6447707fa873abc5574f3f

  • SHA1

    92f2970201541fe1a4359bc992bfd5bed346ac76

  • SHA256

    55f917b78f46bb975d53fcfbff2478bd5821c72adfff06f9e19d6d929334a883

  • SHA512

    16adf6a018b05448dd6a5db007f74b6151c1264f2a2a8142b970ef86abb279a8b6e07d4afe5f050b5dfe34ce83d4ff15ae5bd8dce4f275d7d8cf0d79fe18b500

  • SSDEEP

    12288:gzibosspP5LzfsosspP5LzfCEtDYqjaGt3q1gSJ0Ao:gzi4pP5LTbpP5LTCcY2t3q1gSJ

Score
10/10
imminentpersistencespywaretrojan

Malware Config

Targets

    • Target

      469228ba7c6447707fa873abc5574f3f_JaffaCakes118

    • Size

      815KB

    • MD5

      469228ba7c6447707fa873abc5574f3f

    • SHA1

      92f2970201541fe1a4359bc992bfd5bed346ac76

    • SHA256

      55f917b78f46bb975d53fcfbff2478bd5821c72adfff06f9e19d6d929334a883

    • SHA512

      16adf6a018b05448dd6a5db007f74b6151c1264f2a2a8142b970ef86abb279a8b6e07d4afe5f050b5dfe34ce83d4ff15ae5bd8dce4f275d7d8cf0d79fe18b500

    • SSDEEP

      12288:gzibosspP5LzfsosspP5LzfCEtDYqjaGt3q1gSJ0Ao:gzi4pP5LTbpP5LTCcY2t3q1gSJ

    Score
    10/10
    imminentpersistencespywaretrojan

    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

      trojanspywareimminent

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks