General

  • Target

    0f1670b2bf9c98d525d189a527cb4b77_JaffaCakes118

  • Size

    252KB

  • Sample

    240625-w3qcvsvhpf

  • MD5

    0f1670b2bf9c98d525d189a527cb4b77

  • SHA1

    e449c74004f5e6829ff20050c0c47a9ea9a5fb06

  • SHA256

    e7d0e2327e5f436800495cf2dd4f8c760da7e0bc5b1e9555c24e94e95140fc66

  • SHA512

    3c0612b33f4aa265ac6df4ca4a24332b93d019621b076ce319da1c565f43616730cd7f193c2e63bb367bd3c763bf4519324eab4bb3225f74d7fa95962217fa49

  • SSDEEP

    3072:Kve0o9CzYLNUTN/8nJFYiZR7WbjOxGXu651iUWxLRpx+YTmvE1wW1sp7W/t+Z/1:muGd8J7R7WmGe6clHVTmc19sWsn

Malware Config

Targets

    • Target

      0f1670b2bf9c98d525d189a527cb4b77_JaffaCakes118

    • Size

      252KB

    • MD5

      0f1670b2bf9c98d525d189a527cb4b77

    • SHA1

      e449c74004f5e6829ff20050c0c47a9ea9a5fb06

    • SHA256

      e7d0e2327e5f436800495cf2dd4f8c760da7e0bc5b1e9555c24e94e95140fc66

    • SHA512

      3c0612b33f4aa265ac6df4ca4a24332b93d019621b076ce319da1c565f43616730cd7f193c2e63bb367bd3c763bf4519324eab4bb3225f74d7fa95962217fa49

    • SSDEEP

      3072:Kve0o9CzYLNUTN/8nJFYiZR7WbjOxGXu651iUWxLRpx+YTmvE1wW1sp7W/t+Z/1:muGd8J7R7WmGe6clHVTmc19sWsn

    • Modifies firewall policy service

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks