General

  • Target

    ac8d89433cff39ec26b42892cde9f85d_JaffaCakes118

  • Size

    156KB

  • Sample

    240615-cnes2awbrd

  • MD5

    ac8d89433cff39ec26b42892cde9f85d

  • SHA1

    a278f95d35f274aee14dc0e6f3a9731ba798502c

  • SHA256

    77c1540409a3f5c8f43508f67029c68024e1eec3e47a50cfc10596fbc3d33202

  • SHA512

    97875be0ac2b05bb77fa57ec1944ca0729043e8d2d3f9f9519c5988f2b4ff9a9f8560acb1217e05257867eaf0d1c1eec4de052f6baa467fe7d4bbd012eeab6c9

  • SSDEEP

    3072:ivSTp7Z9jyfkMY+BES09JXAnyrZalI+YQ:i8dGsMYod+X3oI+YQ

Malware Config

Targets

    • Target

      ac8d89433cff39ec26b42892cde9f85d_JaffaCakes118

    • Size

      156KB

    • MD5

      ac8d89433cff39ec26b42892cde9f85d

    • SHA1

      a278f95d35f274aee14dc0e6f3a9731ba798502c

    • SHA256

      77c1540409a3f5c8f43508f67029c68024e1eec3e47a50cfc10596fbc3d33202

    • SHA512

      97875be0ac2b05bb77fa57ec1944ca0729043e8d2d3f9f9519c5988f2b4ff9a9f8560acb1217e05257867eaf0d1c1eec4de052f6baa467fe7d4bbd012eeab6c9

    • SSDEEP

      3072:ivSTp7Z9jyfkMY+BES09JXAnyrZalI+YQ:i8dGsMYod+X3oI+YQ

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks