Overview

overview

10

Static

static

10

8e0ab24cc5...18.exe

windows7-x64

10

8e0ab24cc5...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    8e0ab24cc57b4e79508530cc67d25760_JaffaCakes118

  • Size

    713KB

  • Sample

    241103-3j458szpbq

  • MD5

    8e0ab24cc57b4e79508530cc67d25760

  • SHA1

    130f6ea476483729c4b498c0145a0f5dac52d0ef

  • SHA256

    b87d9fe46b6fd58afe41a2e8919907e1a94f5439e89aba6dfa9b27c890cfaaec

  • SHA512

    290dca4dc943b6ad0aa0a74af0574dd11de9d757749b0593782dff48321f557ea866de7436e35cd7e5078a3cf6d24daddedad54113a096b5c6eb925f3ad2d789

  • SSDEEP

    12288:Mk+CItZfMhWTkyQzU+4dt6iNr9cBVX6nLFYn85Sd4dsgiXi5dQgWiE/M:Mk6Ghz9UJt/NrGBUnLT5ddsgwi7qiEE

Score
10/10
webmonitorbackdoordiscoveryinfostealerratupx

Malware Config

Targets

    • Target

      8e0ab24cc57b4e79508530cc67d25760_JaffaCakes118

    • Size

      713KB

    • MD5

      8e0ab24cc57b4e79508530cc67d25760

    • SHA1

      130f6ea476483729c4b498c0145a0f5dac52d0ef

    • SHA256

      b87d9fe46b6fd58afe41a2e8919907e1a94f5439e89aba6dfa9b27c890cfaaec

    • SHA512

      290dca4dc943b6ad0aa0a74af0574dd11de9d757749b0593782dff48321f557ea866de7436e35cd7e5078a3cf6d24daddedad54113a096b5c6eb925f3ad2d789

    • SSDEEP

      12288:Mk+CItZfMhWTkyQzU+4dt6iNr9cBVX6nLFYn85Sd4dsgiXi5dQgWiE/M:Mk6Ghz9UJt/NrGBUnLT5ddsgwi7qiEE

    Score
    10/10
    webmonitorbackdoordiscoveryinfostealerratupx

    • RevcodeRat, WebMonitorRat

      WebMonitor is a remote access tool that you can use from any browser access to control, and monitor your phones, or PCs.

      backdoorratinfostealerwebmonitor

    • WebMonitor payload

    • Webmonitor family

      webmonitor

    • Unexpected DNS network traffic destination

      Network traffic to other servers than the configured DNS servers was detected on the DNS port.

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

      upx
    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks