ammyyadmin | 22e5ba85e12a046aa53dd32213edf7e8ae8ba32360edd0064e5d8a3f866d0894 | Triage

Submit
Reports

Overview

overview

Static

static

JaffaCakes...98.exe

windows10-2004-x64

Sharing

General

Target

JaffaCakes118_aeb2b92aa0b59fb81871573cc24e5298
Size

700KB
Sample

250411-rjmqea1rt5
MD5

aeb2b92aa0b59fb81871573cc24e5298
SHA1

d4534643ca570a43459638bd36e6281802dfa459
SHA256

22e5ba85e12a046aa53dd32213edf7e8ae8ba32360edd0064e5d8a3f866d0894
SHA512

d9fd5544e32f068ad1ae6ded12e72243d92419efbec290cb342b9ddf9a72563962fdc4faa60a7aa3e22a3034327096525e5aafcf448da4df5e485abf0b62a6af
SSDEEP

12288:1hjun1eaHjs7C8la0n9lp9Dkb1RtgA93ykM+TZtC3pge:DqeOs7C840n9lpG1Rtb93IKZtze

Score

10^/10

ammyyadmin flawedammyy discovery trojan

Static task

static1

3 signatures

Behavioral task

behavioral1

Sample

JaffaCakes118_aeb2b92aa0b59fb81871573cc24e5298.exe

Resource

win10v2004-20250314-en

flawedammyy discovery trojan

windows10-2004-x64

8 signatures

150 seconds

Malware Config

Targets

- Target
  
  JaffaCakes118_aeb2b92aa0b59fb81871573cc24e5298
- Size
  
  700KB
- MD5
  
  aeb2b92aa0b59fb81871573cc24e5298
- SHA1
  
  d4534643ca570a43459638bd36e6281802dfa459
- SHA256
  
  22e5ba85e12a046aa53dd32213edf7e8ae8ba32360edd0064e5d8a3f866d0894
- SHA512
  
  d9fd5544e32f068ad1ae6ded12e72243d92419efbec290cb342b9ddf9a72563962fdc4faa60a7aa3e22a3034327096525e5aafcf448da4df5e485abf0b62a6af
- SSDEEP
  
  12288:1hjun1eaHjs7C8la0n9lp9Dkb1RtgA93ykM+TZtC3pge:DqeOs7C840n9lpG1Rtb93IKZtze
Score

10^/10

flawedammyy discovery trojan
- FlawedAmmyy RAT
  Remote-access trojan based on leaked code for the Ammyy remote admin software.
  trojan flawedammyy
- Flawedammyy family
  flawedammyy
- Checks computer location settings
  Looks up country code configured in the registry, likely geofence.
behavioral1

MITRE ATT&CK Enterprise v16

Reconnaissance

Resource Development

Initial Access

Execution

Persistence

Privilege Escalation

Defense Evasion

Credential Access

Discovery

Query Registry

System Information Discovery

System Location Discovery

System Language Discovery

Lateral Movement

Collection

Command and Control

Exfiltration

Impact

Tasks

static1

behavioral1

flawedammyydiscoverytrojan

© 2018-2025

Terms | Privacy