General

  • Target

    a15db1e225745bc4391e6a9f44d5184d_JaffaCakes118

  • Size

    155KB

  • Sample

    240612-t54xxs1hqc

  • MD5

    a15db1e225745bc4391e6a9f44d5184d

  • SHA1

    fc8513de78fa70ff5cd283fb6ee1abf7dfb62d0a

  • SHA256

    a593076bb50ed8fea6cdba328a144307f0c1aaf36436287be04c7f801a0edc00

  • SHA512

    e78dcbd33d829e1382cba97ebc890e4f3db610d1add3ca19e41cbd997d1dc6999dcd4705ee7aeb72e3421f00c6e71439fcc1ecc8b747992d4639d474436d615f

  • SSDEEP

    3072:ivAhqN1L9yfkMY+BES09JXAnyrZalI+YQ:iIqN1LIsMYod+X3oI+YQ

Malware Config

Targets

    • Target

      a15db1e225745bc4391e6a9f44d5184d_JaffaCakes118

    • Size

      155KB

    • MD5

      a15db1e225745bc4391e6a9f44d5184d

    • SHA1

      fc8513de78fa70ff5cd283fb6ee1abf7dfb62d0a

    • SHA256

      a593076bb50ed8fea6cdba328a144307f0c1aaf36436287be04c7f801a0edc00

    • SHA512

      e78dcbd33d829e1382cba97ebc890e4f3db610d1add3ca19e41cbd997d1dc6999dcd4705ee7aeb72e3421f00c6e71439fcc1ecc8b747992d4639d474436d615f

    • SSDEEP

      3072:ivAhqN1L9yfkMY+BES09JXAnyrZalI+YQ:iIqN1LIsMYod+X3oI+YQ

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks