General

  • Target

    16ac4e206e38321d926e90f02147358a_JaffaCakes118

  • Size

    262KB

  • Sample

    241005-h1mbjascqm

  • MD5

    16ac4e206e38321d926e90f02147358a

  • SHA1

    b86863d688c5d044105ec0cfd6540568a5a2efa4

  • SHA256

    a122f535a1028e17de4bddd597e26c22edd0f5db8ac41d6ea9ff9ca878f6ade3

  • SHA512

    1408bb59117175dbdaa3605e734458a579bf033c0616b074ca2a5cc3adf86673c0374ac3d44729b8af7a5a37c1f458ae86aa5626d87de3d7331f433c89fe00b8

  • SSDEEP

    3072:ICuuNCRs/Pj03pJEEC9ti9pocimFFVW6E1fZim4v5TRRJBYeBTg4vRPW9vc/Bm6a:ICIGPj038tAgFMldWNX++eJknGe

Malware Config

Targets

    • Target

      16ac4e206e38321d926e90f02147358a_JaffaCakes118

    • Size

      262KB

    • MD5

      16ac4e206e38321d926e90f02147358a

    • SHA1

      b86863d688c5d044105ec0cfd6540568a5a2efa4

    • SHA256

      a122f535a1028e17de4bddd597e26c22edd0f5db8ac41d6ea9ff9ca878f6ade3

    • SHA512

      1408bb59117175dbdaa3605e734458a579bf033c0616b074ca2a5cc3adf86673c0374ac3d44729b8af7a5a37c1f458ae86aa5626d87de3d7331f433c89fe00b8

    • SSDEEP

      3072:ICuuNCRs/Pj03pJEEC9ti9pocimFFVW6E1fZim4v5TRRJBYeBTg4vRPW9vc/Bm6a:ICIGPj038tAgFMldWNX++eJknGe

    • Modifies WinLogon for persistence

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks