General

  • Target

    2c919ad0316fe693318b5551a10a726a_JaffaCakes118

  • Size

    113KB

  • Sample

    240329-zpal2ahe4w

  • MD5

    2c919ad0316fe693318b5551a10a726a

  • SHA1

    5660cc6a3cec7a993f28d36bf23643b82862333e

  • SHA256

    b13add461d5334b2b895d0592aa5507423edd994d20b214cd9ff632248f5b151

  • SHA512

    35eb7d459a2643dfd8db938b3cb78d9c9eaec377b4546ce45a73561091173ca702e12402c19abbbc4c24c4dee263a5f7c7dfadea2daf058f0388ae56a0dc7f27

  • SSDEEP

    3072:kiry859a2ADJf9wHYqbgFFo8+HeAf+TRCm7FnVqfJXFWbNb:T9a2aLqkrMmsm7FnVqfJXFWbNb

Score
10/10

Malware Config

Targets

    • Target

      2c919ad0316fe693318b5551a10a726a_JaffaCakes118

    • Size

      113KB

    • MD5

      2c919ad0316fe693318b5551a10a726a

    • SHA1

      5660cc6a3cec7a993f28d36bf23643b82862333e

    • SHA256

      b13add461d5334b2b895d0592aa5507423edd994d20b214cd9ff632248f5b151

    • SHA512

      35eb7d459a2643dfd8db938b3cb78d9c9eaec377b4546ce45a73561091173ca702e12402c19abbbc4c24c4dee263a5f7c7dfadea2daf058f0388ae56a0dc7f27

    • SSDEEP

      3072:kiry859a2ADJf9wHYqbgFFo8+HeAf+TRCm7FnVqfJXFWbNb:T9a2aLqkrMmsm7FnVqfJXFWbNb

    Score
    7/10
    • Changes its process name

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks