General

  • Target

    f9b7187292154345167b042c50421b71_JaffaCakes118

  • Size

    240KB

  • Sample

    241218-crn6wazmbl

  • MD5

    f9b7187292154345167b042c50421b71

  • SHA1

    1d154421fdf341ef5390c160f838252b3bd00fa7

  • SHA256

    7e616f2b9f07135ad0324568a351e31e6e473095c2bbe245dbf01e416c6280cb

  • SHA512

    e14c0dc9288abd2c47a2ea32b0ba5bc836378f9d3721e7dd23c4e1a66baa370871c03a10a1f144c728543de65047f6ba8d00185b85ea6272bcca558341d0d6b1

  • SSDEEP

    3072:dNzt20uHs4Lhun3AZi3SnTyS72V7jzzCqHwJHoc8WqR08m1osj81MOaDv8tdUJn7:/zFn4ut3Oy+2xjXfI8wXD8MDvfqlS

Malware Config

Targets

    • Target

      f9b7187292154345167b042c50421b71_JaffaCakes118

    • Size

      240KB

    • MD5

      f9b7187292154345167b042c50421b71

    • SHA1

      1d154421fdf341ef5390c160f838252b3bd00fa7

    • SHA256

      7e616f2b9f07135ad0324568a351e31e6e473095c2bbe245dbf01e416c6280cb

    • SHA512

      e14c0dc9288abd2c47a2ea32b0ba5bc836378f9d3721e7dd23c4e1a66baa370871c03a10a1f144c728543de65047f6ba8d00185b85ea6272bcca558341d0d6b1

    • SSDEEP

      3072:dNzt20uHs4Lhun3AZi3SnTyS72V7jzzCqHwJHoc8WqR08m1osj81MOaDv8tdUJn7:/zFn4ut3Oy+2xjXfI8wXD8MDvfqlS

    • Ramnit

      Ramnit is a versatile family that holds viruses, worms, and Trojans.

    • Ramnit family

    • Executes dropped EXE

    • Loads dropped DLL

    • Drops file in System32 directory

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

MITRE ATT&CK Enterprise v15

Tasks