General

  • Target

    10d1363f9cc8845116f5f38a388ae89e_JaffaCakes118

  • Size

    224KB

  • Sample

    241003-2wqmya1emk

  • MD5

    10d1363f9cc8845116f5f38a388ae89e

  • SHA1

    250438849b4f9ede5a7e2725a0149c0b3af26e7e

  • SHA256

    c9cf3cf12b4b1a9fb13f029c5f9d5ea60b223a46d087600b437747c0bac9847d

  • SHA512

    42ffc61c504d7ed85ea2b8012c8d627376099a9f692a4a7617c1a1677c53a6110b854b18376ccdd501eab957d85f435afadea2bba0781e95b08c0b6b888217f8

  • SSDEEP

    3072:TvXmimD0k0QRW1PhI1sItKOgGdX3DUPYycInVoM/FJFJ9USgqZEST636:T+fD/0QSzItKOgGFYSInVzFJ3mA

Malware Config

Targets

    • Target

      10d1363f9cc8845116f5f38a388ae89e_JaffaCakes118

    • Size

      224KB

    • MD5

      10d1363f9cc8845116f5f38a388ae89e

    • SHA1

      250438849b4f9ede5a7e2725a0149c0b3af26e7e

    • SHA256

      c9cf3cf12b4b1a9fb13f029c5f9d5ea60b223a46d087600b437747c0bac9847d

    • SHA512

      42ffc61c504d7ed85ea2b8012c8d627376099a9f692a4a7617c1a1677c53a6110b854b18376ccdd501eab957d85f435afadea2bba0781e95b08c0b6b888217f8

    • SSDEEP

      3072:TvXmimD0k0QRW1PhI1sItKOgGdX3DUPYycInVoM/FJFJ9USgqZEST636:T+fD/0QSzItKOgGFYSInVzFJ3mA

    • Modifies WinLogon for persistence

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks