General

  • Target

    6fc30cbb44c2083b725c5fc2eba9a2b7_JaffaCakes118

  • Size

    157KB

  • Sample

    240524-zbw8waae34

  • MD5

    6fc30cbb44c2083b725c5fc2eba9a2b7

  • SHA1

    daa8bd770cf3c355a4bcf93f67c0cc913ccd7efa

  • SHA256

    26e7c664bfe99c5e7801d3e016b5dcbe51b16b744731c11d78199144b0359015

  • SHA512

    45fa372ae24fbecf0072a09a8f659bd6f69daee79835b3d1c1f1b6db5abe7be1f7107df3f1a7285d4bb6d7632dacaa51d5ba8045615905609487c08ca09c867b

  • SSDEEP

    1536:isRTwgvOqEClT8byLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJA:iuwN04byfkMY+BES09JXAnyrZalI+YQ

Malware Config

Targets

    • Target

      6fc30cbb44c2083b725c5fc2eba9a2b7_JaffaCakes118

    • Size

      157KB

    • MD5

      6fc30cbb44c2083b725c5fc2eba9a2b7

    • SHA1

      daa8bd770cf3c355a4bcf93f67c0cc913ccd7efa

    • SHA256

      26e7c664bfe99c5e7801d3e016b5dcbe51b16b744731c11d78199144b0359015

    • SHA512

      45fa372ae24fbecf0072a09a8f659bd6f69daee79835b3d1c1f1b6db5abe7be1f7107df3f1a7285d4bb6d7632dacaa51d5ba8045615905609487c08ca09c867b

    • SSDEEP

      1536:isRTwgvOqEClT8byLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJA:iuwN04byfkMY+BES09JXAnyrZalI+YQ

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks