General

  • Target

    1144f87bc629d720930f5ce8331941cd_JaffaCakes118

  • Size

    508KB

  • Sample

    241004-bvldqa1bqg

  • MD5

    1144f87bc629d720930f5ce8331941cd

  • SHA1

    0b3478027aa2652db82a7fbe2e14e93326692a90

  • SHA256

    56638d3bc8f0d607599f32184885d78770eb5c78f938d2481f0229825ade637e

  • SHA512

    5d78aa507c7b30e93aae58cc1ef6e72a38ce18e4a40137494975987c5c94ba0062685ea13440dac730a55509c909be539a612cb27934d9b70a910f8c8214ff7e

  • SSDEEP

    6144:hhwcskkkkknffCp5CrRKlua3Bo30fHosMW7yefxmzSdrFN1:LwqqPokgszxzX

Malware Config

Targets

    • Target

      1144f87bc629d720930f5ce8331941cd_JaffaCakes118

    • Size

      508KB

    • MD5

      1144f87bc629d720930f5ce8331941cd

    • SHA1

      0b3478027aa2652db82a7fbe2e14e93326692a90

    • SHA256

      56638d3bc8f0d607599f32184885d78770eb5c78f938d2481f0229825ade637e

    • SHA512

      5d78aa507c7b30e93aae58cc1ef6e72a38ce18e4a40137494975987c5c94ba0062685ea13440dac730a55509c909be539a612cb27934d9b70a910f8c8214ff7e

    • SSDEEP

      6144:hhwcskkkkknffCp5CrRKlua3Bo30fHosMW7yefxmzSdrFN1:LwqqPokgszxzX

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks