Overview

overview

10

Static

static

3

4010443b9e...18.exe

windows7-x64

10

4010443b9e...18.exe

windows10-2004-x64

3

Sharing

Copy URL
Twitter E-mail

General

  • Target

    4010443b9ed58a836bb5884b2894c2b0_JaffaCakes118

  • Size

    648KB

  • Sample

    241013-qjbsgashnp

  • MD5

    4010443b9ed58a836bb5884b2894c2b0

  • SHA1

    9d3b87c3826fb9decf8c0ba90916f3f19df1710b

  • SHA256

    dbd39ebcc24416d61a12ca6578636b2008674a64c357ee45c0687793ca0d695a

  • SHA512

    023d572d2ed60759d7b965e95a598b1487ade1a8d17a866c5b38fdf084eb124e8f002ee0ae52759e8d87c4fa06357ab8429d9746e8d6604d39f49e594cc61913

  • SSDEEP

    12288:M3TdtLW5WIj1YSSdFxsBSXyMzBUWb9lx/9AgHLo8OW+rB:2Dsj1dEcBcJ9nPx/igrp+

Score
10/10
ardamaxdiscoverykeyloggerstealer

Malware Config

Targets

    • Target

      4010443b9ed58a836bb5884b2894c2b0_JaffaCakes118

    • Size

      648KB

    • MD5

      4010443b9ed58a836bb5884b2894c2b0

    • SHA1

      9d3b87c3826fb9decf8c0ba90916f3f19df1710b

    • SHA256

      dbd39ebcc24416d61a12ca6578636b2008674a64c357ee45c0687793ca0d695a

    • SHA512

      023d572d2ed60759d7b965e95a598b1487ade1a8d17a866c5b38fdf084eb124e8f002ee0ae52759e8d87c4fa06357ab8429d9746e8d6604d39f49e594cc61913

    • SSDEEP

      12288:M3TdtLW5WIj1YSSdFxsBSXyMzBUWb9lx/9AgHLo8OW+rB:2Dsj1dEcBcJ9nPx/igrp+

    Score
    10/10
    ardamaxdiscoverykeyloggerstealer

    • Ardamax

      A keylogger first seen in 2013.

      keyloggerstealerardamax

    • Ardamax main executable

    • AutoIT Executable

      AutoIT scripts compiled to PE executables.

    • Drops file in System32 directory

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks