General

  • Target

    acc36dcbcc24680091c084b93f767e3f_JaffaCakes118

  • Size

    589KB

  • Sample

    240615-d7kdasxhlg

  • MD5

    acc36dcbcc24680091c084b93f767e3f

  • SHA1

    7a62ea0f6838dc616a122ab7b49b116471be8b3c

  • SHA256

    7db10143b00686d772099d595015fe429886ef41408b032185616738da9a354b

  • SHA512

    629f052d95ca0c1348f1519aa48aacd7819102583f1cda48459528aed98b8aceca5d4a2f36dc46acaf3b73ed26f1232d7e3addc93e28cfb19fd1cb549781a969

  • SSDEEP

    12288:Qw5d+X3O5d+X3gWK5d+X3go5d+X3o5d+X3+:QK+M+8+/+i+e

Malware Config

Targets

    • Target

      acc36dcbcc24680091c084b93f767e3f_JaffaCakes118

    • Size

      589KB

    • MD5

      acc36dcbcc24680091c084b93f767e3f

    • SHA1

      7a62ea0f6838dc616a122ab7b49b116471be8b3c

    • SHA256

      7db10143b00686d772099d595015fe429886ef41408b032185616738da9a354b

    • SHA512

      629f052d95ca0c1348f1519aa48aacd7819102583f1cda48459528aed98b8aceca5d4a2f36dc46acaf3b73ed26f1232d7e3addc93e28cfb19fd1cb549781a969

    • SSDEEP

      12288:Qw5d+X3O5d+X3gWK5d+X3go5d+X3o5d+X3+:QK+M+8+/+i+e

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks