Overview

overview

10

Static

static

3

9462985686...18.exe

windows7-x64

10

9462985686...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    9462985686930c30cc5e4384593e9239_JaffaCakes118

  • Size

    500KB

  • Sample

    240604-ltevnada93

  • MD5

    9462985686930c30cc5e4384593e9239

  • SHA1

    8f2244a7f55961e8cb925ce6a1bf8866a132afb9

  • SHA256

    f1fe83abf9e6ca5258079ae8219e364a90fe120bdadc196ec905d949ce15c2b0

  • SHA512

    355294c4011cd3fdad3d18e8ede43adc627de13c29b6afc702aa198bfcacc85366479ba21b8a1cc3946793506cebd182788f6936034333abf390936b45910f2f

  • SSDEEP

    6144:+kWM1y0f6wmZG9zRXqkqtkQ+kLX01lu9T/kxiIAEdo29KvHCadUWcYh62mTb0ViF:JWRcJFxD1lupkxHxoSCBA2ml

Score
10/10
imminentspywaretrojan

Malware Config

Targets

    • Target

      9462985686930c30cc5e4384593e9239_JaffaCakes118

    • Size

      500KB

    • MD5

      9462985686930c30cc5e4384593e9239

    • SHA1

      8f2244a7f55961e8cb925ce6a1bf8866a132afb9

    • SHA256

      f1fe83abf9e6ca5258079ae8219e364a90fe120bdadc196ec905d949ce15c2b0

    • SHA512

      355294c4011cd3fdad3d18e8ede43adc627de13c29b6afc702aa198bfcacc85366479ba21b8a1cc3946793506cebd182788f6936034333abf390936b45910f2f

    • SSDEEP

      6144:+kWM1y0f6wmZG9zRXqkqtkQ+kLX01lu9T/kxiIAEdo29KvHCadUWcYh62mTb0ViF:JWRcJFxD1lupkxHxoSCBA2ml

    Score
    10/10
    imminentspywaretrojan

    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

      trojanspywareimminent

    • Drops startup file

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Matrix

Tasks