General

  • Target

    a0fe2519bdc421d438297d807e7735b4_JaffaCakes118

  • Size

    156KB

  • Sample

    240612-rsx8hayblh

  • MD5

    a0fe2519bdc421d438297d807e7735b4

  • SHA1

    468341c045ee11cc37426c203616c038eddea606

  • SHA256

    7fe6304b3c2acf5b4efa110a6f13b233ffad4359f4d2d64904cf2decc9ad3bcd

  • SHA512

    878a2038ed7fa3421e17aa9c0e9919a1efa0e817213b68e75437b28627c7768fa5d7ed422089a5b47cedfd0913ba05bcc7b5263572c985b1f976d81b3900e0e4

  • SSDEEP

    1536:ilRTBq7ramYTxgyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrk:iTk0TxgyfkMY+BES09JXAnyrZalI+YQ

Malware Config

Targets

    • Target

      a0fe2519bdc421d438297d807e7735b4_JaffaCakes118

    • Size

      156KB

    • MD5

      a0fe2519bdc421d438297d807e7735b4

    • SHA1

      468341c045ee11cc37426c203616c038eddea606

    • SHA256

      7fe6304b3c2acf5b4efa110a6f13b233ffad4359f4d2d64904cf2decc9ad3bcd

    • SHA512

      878a2038ed7fa3421e17aa9c0e9919a1efa0e817213b68e75437b28627c7768fa5d7ed422089a5b47cedfd0913ba05bcc7b5263572c985b1f976d81b3900e0e4

    • SSDEEP

      1536:ilRTBq7ramYTxgyLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrk:iTk0TxgyfkMY+BES09JXAnyrZalI+YQ

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks