Overview

overview

10

Static

static

3

8ea64e3d7d...18.exe

windows7-x64

10

8ea64e3d7d...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8ea64e3d7d21d76f220e4883139887fb_JaffaCakes118

  • Size

    1.1MB

  • Sample

    240812-n4nxeszemm

  • MD5

    8ea64e3d7d21d76f220e4883139887fb

  • SHA1

    f48d2bfafed5d12ec3edf06e219d4031ce269683

  • SHA256

    a33fce6d1b0d2b3e115df7b86c351d60a0b89f4b891187473219d95c93150472

  • SHA512

    305bffd096f80c325cd2ce86d9c61c9ab8f4b1d9f2043995be19b98f291cf9de6521a4fa9c2179e1b8aebf2c11764393b0cd4ab7e338c58017b0b3b76d461f74

  • SSDEEP

    24576:5k/ATxOTZF7Yd2X015YE+0UoeahCAcYTNFr2q2LJEh7/sihvN6IoCGyPDEp6P0:moTQK2XdwUPLAc8Nsq2dEhlhlN0ja

Score
10/10
ardamaxdiscoverykeyloggerpersistencestealer

Malware Config

Targets

    • Target

      8ea64e3d7d21d76f220e4883139887fb_JaffaCakes118

    • Size

      1.1MB

    • MD5

      8ea64e3d7d21d76f220e4883139887fb

    • SHA1

      f48d2bfafed5d12ec3edf06e219d4031ce269683

    • SHA256

      a33fce6d1b0d2b3e115df7b86c351d60a0b89f4b891187473219d95c93150472

    • SHA512

      305bffd096f80c325cd2ce86d9c61c9ab8f4b1d9f2043995be19b98f291cf9de6521a4fa9c2179e1b8aebf2c11764393b0cd4ab7e338c58017b0b3b76d461f74

    • SSDEEP

      24576:5k/ATxOTZF7Yd2X015YE+0UoeahCAcYTNFr2q2LJEh7/sihvN6IoCGyPDEp6P0:moTQK2XdwUPLAc8Nsq2dEhlhlN0ja

    Score
    10/10
    ardamaxdiscoverykeyloggerpersistencestealer

    • Ardamax

      A keylogger first seen in 2013.

      keyloggerstealerardamax

    • Ardamax main executable

    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

      persistence

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

      discovery

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks