General

  • Target

    f8340f1f17ac937acf38a07c53076b70_JaffaCakes118

  • Size

    158KB

  • Sample

    241216-klkv9stnam

  • MD5

    f8340f1f17ac937acf38a07c53076b70

  • SHA1

    32cb8ada5be18c430562d955c1197779d81a1994

  • SHA256

    75e7b9ac49801370b83e84f6e5a1cce9a7a95cb2ef389185c31b0979b83cf859

  • SHA512

    16215904a53e08ff456d476823375b7e54c0d03cdfd57601aa9ef2cfab1e567731e4691ed11c1496f7c104900a207801774132f9d9ebd14e34fca33f54e0b50d

  • SSDEEP

    3072:iTRI5pFKegHZyfkMY+BES09JXAnyrZalI+YQ:iKlSH8sMYod+X3oI+YQ

Malware Config

Targets

    • Target

      f8340f1f17ac937acf38a07c53076b70_JaffaCakes118

    • Size

      158KB

    • MD5

      f8340f1f17ac937acf38a07c53076b70

    • SHA1

      32cb8ada5be18c430562d955c1197779d81a1994

    • SHA256

      75e7b9ac49801370b83e84f6e5a1cce9a7a95cb2ef389185c31b0979b83cf859

    • SHA512

      16215904a53e08ff456d476823375b7e54c0d03cdfd57601aa9ef2cfab1e567731e4691ed11c1496f7c104900a207801774132f9d9ebd14e34fca33f54e0b50d

    • SSDEEP

      3072:iTRI5pFKegHZyfkMY+BES09JXAnyrZalI+YQ:iKlSH8sMYod+X3oI+YQ

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Ramnit family

    • Executes dropped EXE

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks