General

  • Target

    10ab72dc41b1e25d3481fa976e32646a_JaffaCakes118

  • Size

    272KB

  • Sample

    241003-1xt63syfnk

  • MD5

    10ab72dc41b1e25d3481fa976e32646a

  • SHA1

    035ea4614924beb54203b33a140bf5056249e6b2

  • SHA256

    c5a68e2b4c7e9960deae348969f078947dd8f70b2446869446f191c13c9cdf1b

  • SHA512

    fb7bd7d5435ae5e2486ba06ae2969127e91dc3e16e281cb810e175600a45d577bfd83d521ba028538ea4028ca222b0fb5e2ea8d6128871563b4ab6e37f9f97ed

  • SSDEEP

    6144:QKZp3KNjVGvY6Vr9blG+7T6vVifVSRGFyt9JFrWfg:QCxKNjcf91Jut9JFrW4

Malware Config

Targets

    • Target

      10ab72dc41b1e25d3481fa976e32646a_JaffaCakes118

    • Size

      272KB

    • MD5

      10ab72dc41b1e25d3481fa976e32646a

    • SHA1

      035ea4614924beb54203b33a140bf5056249e6b2

    • SHA256

      c5a68e2b4c7e9960deae348969f078947dd8f70b2446869446f191c13c9cdf1b

    • SHA512

      fb7bd7d5435ae5e2486ba06ae2969127e91dc3e16e281cb810e175600a45d577bfd83d521ba028538ea4028ca222b0fb5e2ea8d6128871563b4ab6e37f9f97ed

    • SSDEEP

      6144:QKZp3KNjVGvY6Vr9blG+7T6vVifVSRGFyt9JFrWfg:QCxKNjcf91Jut9JFrW4

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks