ardamax | 1ab3cc6c9025d6dffe8186a9c1b936574b54e27e017350a7ad3aee01e543c187 | Triage

Submit
Reports

Overview

overview

Static

static

3

a610750437...18.exe

windows7-x64

a610750437...18.exe

windows10-2004-x64

Sharing

General

Target

a61075043762cd855ff89644dff752f4_JaffaCakes118
Size

2.5MB
Sample

240818-ka134svcje
MD5

a61075043762cd855ff89644dff752f4
SHA1

954d4d8204ef33d5710bea491dd2fb8c515b8edc
SHA256

1ab3cc6c9025d6dffe8186a9c1b936574b54e27e017350a7ad3aee01e543c187
SHA512

1ab3296b9e091285dc1fd5a80823c89922778a10edc216759059419233f3756d05fb685c438a0a28dc9b3bd2dc7864d81de666072b9aff44ed85c736a29b0f6e
SSDEEP

49152:5apIbUlZMG9IyclzOp4JPMEMCt1l500tAKiNP4H/Ldit65qhinXBgJ:QibixInt55MDCk0SKiNP4HYt65qoRgJ

Score

10^/10

ardamax discovery keylogger stealer

Static task

static1

1 signatures

Behavioral task

behavioral1

Sample

a61075043762cd855ff89644dff752f4_JaffaCakes118.exe

Resource

win7-20240705-en

ardamax discovery keylogger stealer

windows7-x64

7 signatures

150 seconds

Behavioral task

behavioral2

Sample

a61075043762cd855ff89644dff752f4_JaffaCakes118.exe

Resource

win10v2004-20240802-en

ardamax discovery keylogger stealer

windows10-2004-x64

6 signatures

150 seconds

Malware Config

Targets

- Target
  
  a61075043762cd855ff89644dff752f4_JaffaCakes118
- Size
  
  2.5MB
- MD5
  
  a61075043762cd855ff89644dff752f4
- SHA1
  
  954d4d8204ef33d5710bea491dd2fb8c515b8edc
- SHA256
  
  1ab3cc6c9025d6dffe8186a9c1b936574b54e27e017350a7ad3aee01e543c187
- SHA512
  
  1ab3296b9e091285dc1fd5a80823c89922778a10edc216759059419233f3756d05fb685c438a0a28dc9b3bd2dc7864d81de666072b9aff44ed85c736a29b0f6e
- SSDEEP
  
  49152:5apIbUlZMG9IyclzOp4JPMEMCt1l500tAKiNP4H/Ldit65qhinXBgJ:QibixInt55MDCk0SKiNP4HYt65qoRgJ
Score

10^/10

ardamax discovery keylogger stealer
- Ardamax
  A keylogger first seen in 2013.
  keylogger stealer ardamax
- Ardamax main executable
- Executes dropped EXE
- Loads dropped DLL
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

ardamaxdiscoverykeyloggerstealer

behavioral2

ardamaxdiscoverykeyloggerstealer

© 2018-2025

Terms | Privacy