General

  • Target

    ac6a56f9bd47c6a40cc5621cb7f79dc7_JaffaCakes118

  • Size

    227KB

  • Sample

    240615-byjdjayarq

  • MD5

    ac6a56f9bd47c6a40cc5621cb7f79dc7

  • SHA1

    05fcbdc40efa2d15f19a60b916ec84288a41162a

  • SHA256

    5862e5b0b04ff95d2147bbf8f63a0f1de83b2eb9736a40a6b7194aef82f93abc

  • SHA512

    f628962bd1d35240c1d9992b230f06c324812116b035d51512590c53cb2cb2d824d97b52d2f7e6802a1113097cbc413ffc72734cba0f214a1abc2cf5bac551c7

  • SSDEEP

    3072:S6/yfkMY+BES09JXAnyrZalI+YjYyfkMY+BES09JXAnyrZalI+YS:S6KsMYod+X3oI+YjVsMYod+X3oI+YS

Malware Config

Targets

    • Target

      ac6a56f9bd47c6a40cc5621cb7f79dc7_JaffaCakes118

    • Size

      227KB

    • MD5

      ac6a56f9bd47c6a40cc5621cb7f79dc7

    • SHA1

      05fcbdc40efa2d15f19a60b916ec84288a41162a

    • SHA256

      5862e5b0b04ff95d2147bbf8f63a0f1de83b2eb9736a40a6b7194aef82f93abc

    • SHA512

      f628962bd1d35240c1d9992b230f06c324812116b035d51512590c53cb2cb2d824d97b52d2f7e6802a1113097cbc413ffc72734cba0f214a1abc2cf5bac551c7

    • SSDEEP

      3072:S6/yfkMY+BES09JXAnyrZalI+YjYyfkMY+BES09JXAnyrZalI+YS:S6KsMYod+X3oI+YjVsMYod+X3oI+YS

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks