General

  • Target

    798d5c96823ad4291988c49c9c6daec2_JaffaCakes118

  • Size

    152KB

  • Sample

    241028-n985jsyhln

  • MD5

    798d5c96823ad4291988c49c9c6daec2

  • SHA1

    429380b02252ef42ca848bf55df530da6e6ba257

  • SHA256

    d925561d5cd213a5977d0557c399cebcc33996ea7140e0e5c7c8533c6decd794

  • SHA512

    c9d9b847f787c73086409a267a8fa62e73a9af7038eaf76dfa586e03c81f70e1795c1cfc578bd4b001e662123fc9f02f1b004e6264f96e53b9e67cdf4489a252

  • SSDEEP

    3072:jibTTp78CcrTsDN9xWgREmxzpdGYHIPpZNrLq50F:sT14NT0zWeZpUYoRHrLq5s

Malware Config

Targets

    • Target

      798d5c96823ad4291988c49c9c6daec2_JaffaCakes118

    • Size

      152KB

    • MD5

      798d5c96823ad4291988c49c9c6daec2

    • SHA1

      429380b02252ef42ca848bf55df530da6e6ba257

    • SHA256

      d925561d5cd213a5977d0557c399cebcc33996ea7140e0e5c7c8533c6decd794

    • SHA512

      c9d9b847f787c73086409a267a8fa62e73a9af7038eaf76dfa586e03c81f70e1795c1cfc578bd4b001e662123fc9f02f1b004e6264f96e53b9e67cdf4489a252

    • SSDEEP

      3072:jibTTp78CcrTsDN9xWgREmxzpdGYHIPpZNrLq50F:sT14NT0zWeZpUYoRHrLq5s

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Ramnit family

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks