General

  • Target

    14a5e871645a775caecd6545e7141753_JaffaCakes118

  • Size

    170KB

  • Sample

    241004-x54hya1hqq

  • MD5

    14a5e871645a775caecd6545e7141753

  • SHA1

    e08d24949360893ba6da13265c0e14b26114d3f5

  • SHA256

    bd320a40e5acc8a75fb01da079035c894608d5f95a7599ca164e3f95e8a43f38

  • SHA512

    db4d15c9471c785182afbd71a4b10d4591d17aef655b8c77f643599b58b175f5ad5f12a364ffe87eaf1e67338e48301f09f70ff610bad3a0dde3f44ba0a47a1b

  • SSDEEP

    3072:BwV4OgSzBmh04eZFkz3Rr0gwGj9Tf8L5YtuNuV:BMzzILGFkzhr0pGj9o9jN

Malware Config

Targets

    • Target

      14a5e871645a775caecd6545e7141753_JaffaCakes118

    • Size

      170KB

    • MD5

      14a5e871645a775caecd6545e7141753

    • SHA1

      e08d24949360893ba6da13265c0e14b26114d3f5

    • SHA256

      bd320a40e5acc8a75fb01da079035c894608d5f95a7599ca164e3f95e8a43f38

    • SHA512

      db4d15c9471c785182afbd71a4b10d4591d17aef655b8c77f643599b58b175f5ad5f12a364ffe87eaf1e67338e48301f09f70ff610bad3a0dde3f44ba0a47a1b

    • SSDEEP

      3072:BwV4OgSzBmh04eZFkz3Rr0gwGj9Tf8L5YtuNuV:BMzzILGFkzhr0pGj9o9jN

    • Modifies firewall policy service

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Drops file in Drivers directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks