General

  • Target

    ac2bfc9db49f3c80b46a622963dcfd77_JaffaCakes118

  • Size

    183KB

  • Sample

    240615-agxzxssblg

  • MD5

    ac2bfc9db49f3c80b46a622963dcfd77

  • SHA1

    1963b7ca099823e8be545f7dcb35d2bd4e854bdb

  • SHA256

    9af5d761c6fe649f62247cca1a37787b51d63d120f8c85d9fbadc99a95479259

  • SHA512

    d92f367f98f04826bfc1026374d43f68a4fa48c9338a2d274838029073bed2c84025efaad695426e73c04db0d789df631c6efefca5ee0f6bdfdf97d290d9082e

  • SSDEEP

    3072:DyfkMY+BES09JXAnyrZalI+YxsPXukaW4tUVV:msMYod+X3oI+YxsPpV

Malware Config

Targets

    • Target

      ac2bfc9db49f3c80b46a622963dcfd77_JaffaCakes118

    • Size

      183KB

    • MD5

      ac2bfc9db49f3c80b46a622963dcfd77

    • SHA1

      1963b7ca099823e8be545f7dcb35d2bd4e854bdb

    • SHA256

      9af5d761c6fe649f62247cca1a37787b51d63d120f8c85d9fbadc99a95479259

    • SHA512

      d92f367f98f04826bfc1026374d43f68a4fa48c9338a2d274838029073bed2c84025efaad695426e73c04db0d789df631c6efefca5ee0f6bdfdf97d290d9082e

    • SSDEEP

      3072:DyfkMY+BES09JXAnyrZalI+YxsPXukaW4tUVV:msMYod+X3oI+YxsPpV

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks