General

  • Target

    4cbb6e09360bcae245a940181fea254c_JaffaCakes118

  • Size

    116KB

  • Sample

    240331-eqtq3sde61

  • MD5

    4cbb6e09360bcae245a940181fea254c

  • SHA1

    9a876e39b62f55948fb87842a908cf5e2b8a56f3

  • SHA256

    f0363196705d02410cb5791dda694ba2b6e212bc5486b89b0c785d60705c860b

  • SHA512

    23db93bb13b999d9429632c4fb7249a4e1a5a7e0744638f636af4833a28ac857ca079f8129074b9ed54241ffa49541483b23a81702053785eb3501a42f4f0d3a

  • SSDEEP

    3072:Hir38nE4o42Jf5rml0qbM+pCjPRPTA6rdfgm7FnVqfJXFWbNb:tE4o35pqIhugqm7FnVqfJXFWbNb

Score
10/10

Malware Config

Targets

    • Target

      4cbb6e09360bcae245a940181fea254c_JaffaCakes118

    • Size

      116KB

    • MD5

      4cbb6e09360bcae245a940181fea254c

    • SHA1

      9a876e39b62f55948fb87842a908cf5e2b8a56f3

    • SHA256

      f0363196705d02410cb5791dda694ba2b6e212bc5486b89b0c785d60705c860b

    • SHA512

      23db93bb13b999d9429632c4fb7249a4e1a5a7e0744638f636af4833a28ac857ca079f8129074b9ed54241ffa49541483b23a81702053785eb3501a42f4f0d3a

    • SSDEEP

      3072:Hir38nE4o42Jf5rml0qbM+pCjPRPTA6rdfgm7FnVqfJXFWbNb:tE4o35pqIhugqm7FnVqfJXFWbNb

    Score
    7/10
    • Changes its process name

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks