ammyyadmin | e5e301a72b799f8140c7b2c1cae0d55fe8aa9cb478126f53c9ba4c72ae9e4926 | Triage

Submit
Reports

Overview

overview

Static

static

daa23344a9...18.exe

windows7-x64

daa23344a9...18.exe

windows10-2004-x64

Sharing

General

Target

daa23344a9b61c48d3cf4823945eba2e_JaffaCakes118
Size

772KB
Sample

240911-snxlvaxhmg
MD5

daa23344a9b61c48d3cf4823945eba2e
SHA1

e858854025bedfbe983ee530e1d912fad53b628a
SHA256

e5e301a72b799f8140c7b2c1cae0d55fe8aa9cb478126f53c9ba4c72ae9e4926
SHA512

8e634b713b5c5e936e8f36597a1b938ff5074735a08cb7a089f6e6db5d684cd8f512a0f53f2b0acee768bedb80c7583a02ec788559f90ac89075a43d894fbc20
SSDEEP

24576:ztkmHEgSewkmchJGsORtn9qT8+Yg035Yh:J/kGmchzqiY3uh

Score

10^/10

ammyyadmin flawedammyy discovery trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

daa23344a9b61c48d3cf4823945eba2e_JaffaCakes118.exe

Resource

win7-20240729-en

flawedammyy discovery trojan

windows7-x64

4 signatures

150 seconds

Behavioral task

behavioral2

Sample

daa23344a9b61c48d3cf4823945eba2e_JaffaCakes118.exe

Resource

win10v2004-20240802-en

flawedammyy discovery trojan

windows10-2004-x64

3 signatures

150 seconds

Malware Config

Targets

- Target
  
  daa23344a9b61c48d3cf4823945eba2e_JaffaCakes118
- Size
  
  772KB
- MD5
  
  daa23344a9b61c48d3cf4823945eba2e
- SHA1
  
  e858854025bedfbe983ee530e1d912fad53b628a
- SHA256
  
  e5e301a72b799f8140c7b2c1cae0d55fe8aa9cb478126f53c9ba4c72ae9e4926
- SHA512
  
  8e634b713b5c5e936e8f36597a1b938ff5074735a08cb7a089f6e6db5d684cd8f512a0f53f2b0acee768bedb80c7583a02ec788559f90ac89075a43d894fbc20
- SSDEEP
  
  24576:ztkmHEgSewkmchJGsORtn9qT8+Yg035Yh:J/kGmchzqiY3uh
Score

10^/10

flawedammyy discovery trojan
- FlawedAmmyy RAT
  Remote-access trojan based on leaked code for the Ammyy remote admin software.
  trojan flawedammyy
behavioral1 behavioral2

MITRE ATT&CK Enterprise v15

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

flawedammyydiscoverytrojan

behavioral2

flawedammyydiscoverytrojan

© 2018-2024

Terms | Privacy