General

  • Target

    11a8ec571084da7527bbaff590961961_JaffaCakes118

  • Size

    100KB

  • Sample

    240626-mdrd7asfpr

  • MD5

    11a8ec571084da7527bbaff590961961

  • SHA1

    845e37c92f1331c500c8d9296383a594b94a7b21

  • SHA256

    a61941323d0c15a0ac33000a8c156e2058a40a6e2afe99df4b06079ec88a3c18

  • SHA512

    5cb1788e4cd44f752eb8a4757d83e17fb8651edd0b1512db9926ae469118dd4b7a3c079c9e489a9ce08d74a3badae3962d5991d9b566109de871b557ec434bd4

  • SSDEEP

    3072:5ibTTp78CcWi4KygA/EY9Y6wsYaHyGWN8eV9lwOz4hv:KT14ikAR9Y6wZG8P9lwgW

Malware Config

Targets

    • Target

      11a8ec571084da7527bbaff590961961_JaffaCakes118

    • Size

      100KB

    • MD5

      11a8ec571084da7527bbaff590961961

    • SHA1

      845e37c92f1331c500c8d9296383a594b94a7b21

    • SHA256

      a61941323d0c15a0ac33000a8c156e2058a40a6e2afe99df4b06079ec88a3c18

    • SHA512

      5cb1788e4cd44f752eb8a4757d83e17fb8651edd0b1512db9926ae469118dd4b7a3c079c9e489a9ce08d74a3badae3962d5991d9b566109de871b557ec434bd4

    • SSDEEP

      3072:5ibTTp78CcWi4KygA/EY9Y6wsYaHyGWN8eV9lwOz4hv:KT14ikAR9Y6wZG8P9lwgW

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks