Overview

overview

10

Static

static

3

e8843fd109...18.exe

windows7-x64

10

e8843fd109...18.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    e8843fd109622c7b391a81976cb99ddc_JaffaCakes118

  • Size

    1.2MB

  • Sample

    241212-14hfvsyqev

  • MD5

    e8843fd109622c7b391a81976cb99ddc

  • SHA1

    61984d96343923446ba119b450a0a01b03a3bc97

  • SHA256

    7ded931de73428a97f6eb4ad66a9e32a57da202198215421232281d576f3b669

  • SHA512

    94f80a07b5093f3d4d5303bbfa132563a18328bcfadd8762f02beef9a7a1b0de1f00907c6fbe5c5052475b727f7ff26a36609d17b28b610cfa8982306fe602c2

  • SSDEEP

    24576:aTsOSJfwuHLfmhfz3AsNjXbLjNcUPEVhq:aTefwuHLfofHNjrLCUPEVI

Score
10/10
imminentdiscoverypersistencespywaretrojan

Malware Config

Targets

    • Target

      e8843fd109622c7b391a81976cb99ddc_JaffaCakes118

    • Size

      1.2MB

    • MD5

      e8843fd109622c7b391a81976cb99ddc

    • SHA1

      61984d96343923446ba119b450a0a01b03a3bc97

    • SHA256

      7ded931de73428a97f6eb4ad66a9e32a57da202198215421232281d576f3b669

    • SHA512

      94f80a07b5093f3d4d5303bbfa132563a18328bcfadd8762f02beef9a7a1b0de1f00907c6fbe5c5052475b727f7ff26a36609d17b28b610cfa8982306fe602c2

    • SSDEEP

      24576:aTsOSJfwuHLfmhfz3AsNjXbLjNcUPEVhq:aTefwuHLfofHNjrLCUPEVI

    Score
    10/10
    imminentdiscoverypersistencespywaretrojan

    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

      trojanspywareimminent

    • Imminent family

      imminent

    • Adds Run key to start application

      persistence

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks