General

  • Target

    12612cb463171941b5a0f6b9ff6b034b_JaffaCakes118

  • Size

    193KB

  • Sample

    240626-sbvayssdkn

  • MD5

    12612cb463171941b5a0f6b9ff6b034b

  • SHA1

    9fcd719a2974e4a9d9cdba9325b4963d0697ea53

  • SHA256

    53f5faf5f6ca82d96a4b47a28e88891fb122ed7f13b743e5d6bb19e1019a8b8c

  • SHA512

    825e4c4b1f505222bcda0ef8a932167862bceedc5afe4a44ec6bf5c964b0c2f24593e2cff6c2a801e97f91854b336e0172b51f6ab085088371e57b878c22e2da

  • SSDEEP

    3072:W73MITL/9oSmkbx3ZtffjBTnIwanLMFylo7Ay+TZ5fq43Uk2gr6w:sdTpountf75Iwksylo/OZ5SUUklv

Malware Config

Targets

    • Target

      12612cb463171941b5a0f6b9ff6b034b_JaffaCakes118

    • Size

      193KB

    • MD5

      12612cb463171941b5a0f6b9ff6b034b

    • SHA1

      9fcd719a2974e4a9d9cdba9325b4963d0697ea53

    • SHA256

      53f5faf5f6ca82d96a4b47a28e88891fb122ed7f13b743e5d6bb19e1019a8b8c

    • SHA512

      825e4c4b1f505222bcda0ef8a932167862bceedc5afe4a44ec6bf5c964b0c2f24593e2cff6c2a801e97f91854b336e0172b51f6ab085088371e57b878c22e2da

    • SSDEEP

      3072:W73MITL/9oSmkbx3ZtffjBTnIwanLMFylo7Ay+TZ5fq43Uk2gr6w:sdTpountf75Iwksylo/OZ5SUUklv

    • Modifies WinLogon for persistence

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Drops file in System32 directory

MITRE ATT&CK Enterprise v15

Tasks