General
-
Target
JaffaCakes118_7aed830d4cabe619f5e876b981d7b3c1
-
Size
987KB
-
Sample
250104-v39aaszjd1
-
MD5
7aed830d4cabe619f5e876b981d7b3c1
-
SHA1
09aabac2de18849a44bab0519e9720bfdc5c1157
-
SHA256
b8332784f686d0ead1fcd5b88c5884d2ce7ccfed079930e9e59d4f2b4ea527bf
-
SHA512
523cf03959272cabd020dc1d0a0174fd0bf9c1e12aa7af0f501017ac08a97c56f5178afbefed6c6447686ede71705e870a17df3261ec0d0f1cbcd724b14b2b03
-
SSDEEP
12288:mLxrFRnNdIF0GPIk0Lujxw5n0LAAmDgG9qPgjDkT3x7MWZ0n8JD7D9/:+xrFB3IF000Lujxe0LaDtNW3x7MW1N
Malware Config
Targets
-
-
Target
JaffaCakes118_7aed830d4cabe619f5e876b981d7b3c1
-
Size
987KB
-
MD5
7aed830d4cabe619f5e876b981d7b3c1
-
SHA1
09aabac2de18849a44bab0519e9720bfdc5c1157
-
SHA256
b8332784f686d0ead1fcd5b88c5884d2ce7ccfed079930e9e59d4f2b4ea527bf
-
SHA512
523cf03959272cabd020dc1d0a0174fd0bf9c1e12aa7af0f501017ac08a97c56f5178afbefed6c6447686ede71705e870a17df3261ec0d0f1cbcd724b14b2b03
-
SSDEEP
12288:mLxrFRnNdIF0GPIk0Lujxw5n0LAAmDgG9qPgjDkT3x7MWZ0n8JD7D9/:+xrFB3IF000Lujxe0LaDtNW3x7MW1N
Score10/10-
Ramnit
Ramnit is a versatile family that holds viruses, worms, and Trojans.
-
Ramnit family
-
Checks computer location settings
Looks up country code configured in the registry, likely geofence.
-
Executes dropped EXE
-
Loads dropped DLL
-
UPX packed file
Detects executables packed with UPX/modified UPX open source packer.
-