General

  • Target

    a9addff2ea3a6d2371ce6548163eab32_JaffaCakes118

  • Size

    181KB

  • Sample

    240614-ppdnksvann

  • MD5

    a9addff2ea3a6d2371ce6548163eab32

  • SHA1

    369143cd1a3c9e78f4af96b60125ccb8847be39e

  • SHA256

    2f40689d976f6cf1fe56caffd0e789fad52a10f6be7f56ba0106a0ec7279ff36

  • SHA512

    9f69747b5a8f3ffb332c6c0df7d113725d8a72ebfcb510c1142918efc9892142fd12dcd72d052205bb64effbcbaac32a8c4e13082729b11fdfb93b8ec472dc80

  • SSDEEP

    3072:ShQ3MJFjzM/a1ZR+hL2rTyfkMY+BES09JXAnyrZalI+YFrGOiDXev:ShQ3MJFjzM/a1ZR+hL2r2sMYod+X3oIt

Malware Config

Targets

    • Target

      a9addff2ea3a6d2371ce6548163eab32_JaffaCakes118

    • Size

      181KB

    • MD5

      a9addff2ea3a6d2371ce6548163eab32

    • SHA1

      369143cd1a3c9e78f4af96b60125ccb8847be39e

    • SHA256

      2f40689d976f6cf1fe56caffd0e789fad52a10f6be7f56ba0106a0ec7279ff36

    • SHA512

      9f69747b5a8f3ffb332c6c0df7d113725d8a72ebfcb510c1142918efc9892142fd12dcd72d052205bb64effbcbaac32a8c4e13082729b11fdfb93b8ec472dc80

    • SSDEEP

      3072:ShQ3MJFjzM/a1ZR+hL2rTyfkMY+BES09JXAnyrZalI+YFrGOiDXev:ShQ3MJFjzM/a1ZR+hL2r2sMYod+X3oIt

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks