General

  • Target

    4ecdb01c6de5e2274aabb4a486c9f471_JaffaCakes118

  • Size

    159KB

  • Sample

    241016-yz29cszgka

  • MD5

    4ecdb01c6de5e2274aabb4a486c9f471

  • SHA1

    dcf959ac82e651e1dce3526d37194439ccac03e9

  • SHA256

    289f6890ee628fd29a5245050f3c76ed792f2330dba89b0a62d543199e38df26

  • SHA512

    a1d2753ea61a1c5463ca1a96b16d283810a2f6f5d67a1cc23351af3c5a2112d534b3f03c859cfe1fdace9473e033e2d56650a1c26301a2c55dab262db2b3012f

  • SSDEEP

    3072:WXyZ/BfyBnWAf1Fm1WoJpcmO0btThdSuV6GGKy3Ga14yjJ7GfMakyw5bXCkJN:WXyZ/BfycaopcmO0bBhPoKVaj76iXC

Malware Config

Targets

    • Target

      4ecdb01c6de5e2274aabb4a486c9f471_JaffaCakes118

    • Size

      159KB

    • MD5

      4ecdb01c6de5e2274aabb4a486c9f471

    • SHA1

      dcf959ac82e651e1dce3526d37194439ccac03e9

    • SHA256

      289f6890ee628fd29a5245050f3c76ed792f2330dba89b0a62d543199e38df26

    • SHA512

      a1d2753ea61a1c5463ca1a96b16d283810a2f6f5d67a1cc23351af3c5a2112d534b3f03c859cfe1fdace9473e033e2d56650a1c26301a2c55dab262db2b3012f

    • SSDEEP

      3072:WXyZ/BfyBnWAf1Fm1WoJpcmO0btThdSuV6GGKy3Ga14yjJ7GfMakyw5bXCkJN:WXyZ/BfycaopcmO0bBhPoKVaj76iXC

    • njRAT/Bladabindi

      Widely used RAT written in .NET.

    • Executes dropped EXE

    • Loads dropped DLL

    • Adds Run key to start application

MITRE ATT&CK Enterprise v15

Tasks