Overview

overview

10

Static

static

5

JaffaCakes...8e.exe

windows7-x64

10

JaffaCakes...8e.exe

windows10-2004-x64

10

Sharing

Copy URL
Twitter E-mail

General

  • Target

    JaffaCakes118_dc6ffba989979aff1a6242359963248e

  • Size

    1.3MB

  • Sample

    250110-ghblmswqap

  • MD5

    dc6ffba989979aff1a6242359963248e

  • SHA1

    97c4ec8b12e3aa4c30bd0df20c4ac5121c535cc5

  • SHA256

    aa42ba7735cc340298ab19cb7f4d16be8c66eafc12ffeda257cfbe5931957d92

  • SHA512

    7996d8b0c90b23cb81c2ed7a097107db6f40287e7f783d705fea603d51254315492532c7c50f26fc13ec000fdc66cad7dc2dc4dd7ee71fbe54d3bce0ed64a42b

  • SSDEEP

    24576:9Cdxte/80jYLT3U1jfsWaqihhlzhThJK+PP1G9iVjLGR3Q:Uw80cTsjkWaqky6xV+u

Score
10/10
imminentdiscoveryspywaretrojan

Malware Config

Targets

    • Target

      JaffaCakes118_dc6ffba989979aff1a6242359963248e

    • Size

      1.3MB

    • MD5

      dc6ffba989979aff1a6242359963248e

    • SHA1

      97c4ec8b12e3aa4c30bd0df20c4ac5121c535cc5

    • SHA256

      aa42ba7735cc340298ab19cb7f4d16be8c66eafc12ffeda257cfbe5931957d92

    • SHA512

      7996d8b0c90b23cb81c2ed7a097107db6f40287e7f783d705fea603d51254315492532c7c50f26fc13ec000fdc66cad7dc2dc4dd7ee71fbe54d3bce0ed64a42b

    • SSDEEP

      24576:9Cdxte/80jYLT3U1jfsWaqihhlzhThJK+PP1G9iVjLGR3Q:Uw80cTsjkWaqky6xV+u

    Score
    10/10
    imminentdiscoveryspywaretrojan

    • Imminent RAT

      Remote-access trojan based on Imminent Monitor remote admin software.

      trojanspywareimminent

    • Imminent family

      imminent

    • Drops startup file

    • Drops desktop.ini file(s)

    • Suspicious use of SetThreadContext

    behavioral1behavioral2

MITRE ATT&CK Enterprise v15

Tasks