General

  • Target

    ad252b73a7bfefa6744dd08a6f7ee260_JaffaCakes118

  • Size

    157KB

  • Sample

    240615-g3tb7avcln

  • MD5

    ad252b73a7bfefa6744dd08a6f7ee260

  • SHA1

    804ab384a3172f5ee8663f2fef003b7bd990030c

  • SHA256

    a78870130f04962be77f8e272d6fc0ebeac8044023653e8f9f920d95dff87cf3

  • SHA512

    89950fc52d617bef37140124cae927b34ee10a8ad8442ce43ab0ba616c68f87279df4a876bf8178469bd7c8a71e83f41c6bdeb84d85a72676a669aa45cefd7e3

  • SSDEEP

    1536:iKRTTLkv83Q8r9yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrk:iIskr9yfkMY+BES09JXAnyrZalI+YQ

Malware Config

Targets

    • Target

      ad252b73a7bfefa6744dd08a6f7ee260_JaffaCakes118

    • Size

      157KB

    • MD5

      ad252b73a7bfefa6744dd08a6f7ee260

    • SHA1

      804ab384a3172f5ee8663f2fef003b7bd990030c

    • SHA256

      a78870130f04962be77f8e272d6fc0ebeac8044023653e8f9f920d95dff87cf3

    • SHA512

      89950fc52d617bef37140124cae927b34ee10a8ad8442ce43ab0ba616c68f87279df4a876bf8178469bd7c8a71e83f41c6bdeb84d85a72676a669aa45cefd7e3

    • SSDEEP

      1536:iKRTTLkv83Q8r9yLi+rffMxqNisaQx4V5roEIfGJZN8qbV76EX1UP09weXA3oJrk:iIskr9yfkMY+BES09JXAnyrZalI+YQ

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Matrix ATT&CK v13

Defense Evasion

Modify Registry

1
T1112

Discovery

Query Registry

1
T1012

System Information Discovery

1
T1082

Tasks