General

  • Target

    a12012df8aaa53d83cc55532be7d784d_JaffaCakes118

  • Size

    158KB

  • Sample

    240612-spjflstdmm

  • MD5

    a12012df8aaa53d83cc55532be7d784d

  • SHA1

    625232fe1d17fa8be2c58c3c36ddc002c397ed45

  • SHA256

    b4b51fb68108eeb81e6c3fe7ac11cefe2f630db6ca01fa5cb69a269a538a4aa6

  • SHA512

    c91ebcf688427915d476a3c2824cd7f4521430237cd39414bd5dc95f056fb32647c8b4e39627867bea50afbc4a04fb9c1afb780c226141f55b9026ed43956ba9

  • SSDEEP

    1536:ieoBtCLMRTHui8vOpxz62v0wBJ/r2gnWWynhThLUvYA5SP+LM8+nMEVjyLi+rffh:ijv9gyfkMY+BES09JXAnyrZalI+YQ

Malware Config

Targets

    • Target

      a12012df8aaa53d83cc55532be7d784d_JaffaCakes118

    • Size

      158KB

    • MD5

      a12012df8aaa53d83cc55532be7d784d

    • SHA1

      625232fe1d17fa8be2c58c3c36ddc002c397ed45

    • SHA256

      b4b51fb68108eeb81e6c3fe7ac11cefe2f630db6ca01fa5cb69a269a538a4aa6

    • SHA512

      c91ebcf688427915d476a3c2824cd7f4521430237cd39414bd5dc95f056fb32647c8b4e39627867bea50afbc4a04fb9c1afb780c226141f55b9026ed43956ba9

    • SSDEEP

      1536:ieoBtCLMRTHui8vOpxz62v0wBJ/r2gnWWynhThLUvYA5SP+LM8+nMEVjyLi+rffh:ijv9gyfkMY+BES09JXAnyrZalI+YQ

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks