General

  • Target

    a1500e709ca86366c54cc03db4e22b95_JaffaCakes118

  • Size

    184KB

  • Sample

    240612-tvxe4a1fla

  • MD5

    a1500e709ca86366c54cc03db4e22b95

  • SHA1

    fd71cbcbfb657633678b2047aa9743dee4fe8b6b

  • SHA256

    3757906721da881c48cafc2fb995d1f2e3927a46e1bbe9140fce952d115e7612

  • SHA512

    69074ab3948108417db7b1be27edaad19d3c25aa767649cf39d3fc279d64ce54e09d42f51a78d04c319b3b577823bffca640abd235b1cc49ceaed6950986bdb9

  • SSDEEP

    3072:SFrALIyfkMY+BES09JXAnyrZalI+Y5N86QwUdedbFilfO5YFis:SFsBsMYod+X3oI+Yn86/U9jFis

Malware Config

Targets

    • Target

      a1500e709ca86366c54cc03db4e22b95_JaffaCakes118

    • Size

      184KB

    • MD5

      a1500e709ca86366c54cc03db4e22b95

    • SHA1

      fd71cbcbfb657633678b2047aa9743dee4fe8b6b

    • SHA256

      3757906721da881c48cafc2fb995d1f2e3927a46e1bbe9140fce952d115e7612

    • SHA512

      69074ab3948108417db7b1be27edaad19d3c25aa767649cf39d3fc279d64ce54e09d42f51a78d04c319b3b577823bffca640abd235b1cc49ceaed6950986bdb9

    • SSDEEP

      3072:SFrALIyfkMY+BES09JXAnyrZalI+Y5N86QwUdedbFilfO5YFis:SFsBsMYod+X3oI+Yn86/U9jFis

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks