Overview

overview

5

Static

static

3

amseed.exe

windows7-x64

5

amseed.exe

windows10-2004-x64

5

amseedmon.exe

windows7-x64

1

amseedmon.exe

windows10-2004-x64

1

Sharing

Copy URL
Twitter E-mail

General

  • Target

    48826d43ccd8498860a6fd04ede7ef57_JaffaCakes118

  • Size

    2.0MB

  • Sample

    240715-gnp18athka

  • MD5

    48826d43ccd8498860a6fd04ede7ef57

  • SHA1

    72df79aa2e2d0dee8be2e1cbfcc2dcdcdff82c33

  • SHA256

    fd4f33e951b0e5f4627e9d19e743d5dc63a4093507898e6af2b6fc976eef5b6c

  • SHA512

    2eb2fb70992c60d18852f27afd7ed2094da4d69e493b120a6b0d5201baf19de2feb82c0fede3b568f15a357ad4ce5d6e22b4d91e85ffee79e07dd45e88fd63bd

  • SSDEEP

    49152:44v1Tl51p/D3fwmAm2NpQ0K9FKjFk/8u3pOv+C6sQPHKya:TJ51Jjem2C9F+y3pA6BPHKH

Score
5/10

Malware Config

Targets

    • Target

      amseed.exe

    • Size

      4.2MB

    • MD5

      bfe55cfc0d5079e85ac51e5ba983cfe3

    • SHA1

      a1be9a1b9707ea8bb67a1fff1bcd6fe64ad373ef

    • SHA256

      bba463e3786618a92ec93623c9e6ca03a2667fea3b35691141892dca713d7033

    • SHA512

      72228655015337c4ca6a37fb5f0322ce91adfc8d711dd869cf2cd93ef0229ac48728a79fa913d81d0caedc383c8cf24a646772bd74760f4e55ced87ecc74011f

    • SSDEEP

      98304:HYHbpnUjvJ7jrqiCCctBHXr0z22VdRBu0neQdmcCumUFjqYafR:HatMZcID4JJPfR

    Score
    5/10

    • Drops file in System32 directory

    behavioral1behavioral2

    • Target

      amseedmon.dll

    • Size

      55KB

    • MD5

      5b4772fad56876a459af23af105203f8

    • SHA1

      4ace28c48cd8aef7adbc9e3da102f29a75401458

    • SHA256

      e55b08b856bab8822e4ff1d625a81117b8cb691dc9210bd6181c291e77cef3cd

    • SHA512

      40a56e23244382001eebf3e32ed76843322395947a46b7a48edf3c9c49a208aff5f72635ca3bd9a1300df77fa71019753ca13a91cb5b74a26a32f2306a2c8c05

    • SSDEEP

      1536:AbHqrRVjKMLBk9T0H0dTPlXKvIGFZz+P:A2vj1LG9Qx/Zz+P

    Score
    1/10
    behavioral3behavioral4

MITRE ATT&CK Matrix

Tasks