General

  • Target

    0e156c62c62b98d6879a8b91935ae52f_JaffaCakes118

  • Size

    156KB

  • Sample

    240625-pqgrmashkm

  • MD5

    0e156c62c62b98d6879a8b91935ae52f

  • SHA1

    778f53fbcf3de2fa37693fd590f28f6e5ca7cc17

  • SHA256

    74031da66901361484d743bfb5afd0ec626b854c7ac7ae0927d88bae41e227aa

  • SHA512

    ed4972d9fd93cea9e0282f1785babb9846a76cdb44707f9f1a0acd5b3042c20ef241df27c20f4694bef3f164091f95f980585934954920ac34d8a5305a006ae7

  • SSDEEP

    3072:aGd5SXDt0QG8AbXDKNd/j48+Xv/ja2U9ppe:Vd5fJ/8+nU9p0

Malware Config

Targets

    • Target

      0e156c62c62b98d6879a8b91935ae52f_JaffaCakes118

    • Size

      156KB

    • MD5

      0e156c62c62b98d6879a8b91935ae52f

    • SHA1

      778f53fbcf3de2fa37693fd590f28f6e5ca7cc17

    • SHA256

      74031da66901361484d743bfb5afd0ec626b854c7ac7ae0927d88bae41e227aa

    • SHA512

      ed4972d9fd93cea9e0282f1785babb9846a76cdb44707f9f1a0acd5b3042c20ef241df27c20f4694bef3f164091f95f980585934954920ac34d8a5305a006ae7

    • SSDEEP

      3072:aGd5SXDt0QG8AbXDKNd/j48+Xv/ja2U9ppe:Vd5fJ/8+nU9p0

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks