General

  • Target

    8436f4395e5aca72a014c4b1e6f775a7_JaffaCakes118

  • Size

    347KB

  • Sample

    240530-p5ntgsad77

  • MD5

    8436f4395e5aca72a014c4b1e6f775a7

  • SHA1

    34a4487796c9b32c138d3398241c2252c8b3f141

  • SHA256

    d06a5112597be80c357e86760a8e35f4dc550f68b06727d4011449ebff9674a8

  • SHA512

    56136954c229e8723a76e2fd8f7247d20431f3d5f7cba27e6ee53ea930730911d287600e07279698cfbf79fed2b4eecc674f155ef9f297f22992b89a69127fe1

  • SSDEEP

    6144:tsMYod+X3oI+YysMYod+X3oI+Y5sMYod+X3oI+YQ:55d+X3y5d+X3f5d+X3+

Malware Config

Targets

    • Target

      8436f4395e5aca72a014c4b1e6f775a7_JaffaCakes118

    • Size

      347KB

    • MD5

      8436f4395e5aca72a014c4b1e6f775a7

    • SHA1

      34a4487796c9b32c138d3398241c2252c8b3f141

    • SHA256

      d06a5112597be80c357e86760a8e35f4dc550f68b06727d4011449ebff9674a8

    • SHA512

      56136954c229e8723a76e2fd8f7247d20431f3d5f7cba27e6ee53ea930730911d287600e07279698cfbf79fed2b4eecc674f155ef9f297f22992b89a69127fe1

    • SSDEEP

      6144:tsMYod+X3oI+YysMYod+X3oI+Y5sMYod+X3oI+YQ:55d+X3y5d+X3f5d+X3+

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks