General

  • Target

    17114db832878c689184db3a98dd4630_JaffaCakes118

  • Size

    552KB

  • Sample

    241005-k5sefsxbkr

  • MD5

    17114db832878c689184db3a98dd4630

  • SHA1

    adaf2d95f35bcb17643aea750ac7c9d0e10cde80

  • SHA256

    358c11cf468efa01a1d40ad0042857d05bf27b3799895b34a28a35628ca75137

  • SHA512

    cdd8e52b8d377b750a1cfb03fff092cf374159a050b6d166370650ba2377901826f758ace6f367430a21d284afe0ab8ff482833781c104542eee6008db500181

  • SSDEEP

    12288:wehnaNPpSVZmNxRCwnwm3W3OHIIf5dafoH3XHYsNJO463:weh0PpS6NxNnwYeOHXHCq3XYcO

Malware Config

Targets

    • Target

      17114db832878c689184db3a98dd4630_JaffaCakes118

    • Size

      552KB

    • MD5

      17114db832878c689184db3a98dd4630

    • SHA1

      adaf2d95f35bcb17643aea750ac7c9d0e10cde80

    • SHA256

      358c11cf468efa01a1d40ad0042857d05bf27b3799895b34a28a35628ca75137

    • SHA512

      cdd8e52b8d377b750a1cfb03fff092cf374159a050b6d166370650ba2377901826f758ace6f367430a21d284afe0ab8ff482833781c104542eee6008db500181

    • SSDEEP

      12288:wehnaNPpSVZmNxRCwnwm3W3OHIIf5dafoH3XHYsNJO463:weh0PpS6NxNnwYeOHXHCq3XYcO

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks