General

  • Target

    a1dc4bdd5b78bca5cf73f785f3bb29f9a65c8e956dff24317877f16e22e5b66a.exe

  • Size

    851KB

  • Sample

    250614-v5gm3a1px6

  • MD5

    4fbe3ccafef4c319165b054421626f71

  • SHA1

    d8acdd0a07e9a0441858d5c23afb3fda312d2b5e

  • SHA256

    a1dc4bdd5b78bca5cf73f785f3bb29f9a65c8e956dff24317877f16e22e5b66a

  • SHA512

    2c8e598df0cfc3c2975ce906664ff6207480ee713133e5e42e23fc1a1c5310ba7c875926ccba93ab19472058585650f5e4b8386154d9cb54a780ec31ce37810f

  • SSDEEP

    12288:3kcFPJwQAwjQHAl5zimMiyACXzO5oYaw9fCdvaEKdyeJaa8phKAjsd:saXf7OEZawEdCLJaa8

Score
10/10

Malware Config

Targets

    • Target

      a1dc4bdd5b78bca5cf73f785f3bb29f9a65c8e956dff24317877f16e22e5b66a.exe

    • Size

      851KB

    • MD5

      4fbe3ccafef4c319165b054421626f71

    • SHA1

      d8acdd0a07e9a0441858d5c23afb3fda312d2b5e

    • SHA256

      a1dc4bdd5b78bca5cf73f785f3bb29f9a65c8e956dff24317877f16e22e5b66a

    • SHA512

      2c8e598df0cfc3c2975ce906664ff6207480ee713133e5e42e23fc1a1c5310ba7c875926ccba93ab19472058585650f5e4b8386154d9cb54a780ec31ce37810f

    • SSDEEP

      12288:3kcFPJwQAwjQHAl5zimMiyACXzO5oYaw9fCdvaEKdyeJaa8phKAjsd:saXf7OEZawEdCLJaa8

    Score
    10/10
    • Detect JanelaRAT payload

    • JanelaRAT

      JanelaRAT is a trojan targeting FinTech users in the LATAM region written in C#.

    • Janelarat family

    • Blocklisted process makes network request

MITRE ATT&CK Enterprise v16

Tasks