General

  • Target

    794c313c7c28561d6fccf4f25029b5c9_JaffaCakes118

  • Size

    97KB

  • Sample

    240401-yx4dmseg66

  • MD5

    794c313c7c28561d6fccf4f25029b5c9

  • SHA1

    b2eac7a32350aa37ef56bcc0168e46d9891caffd

  • SHA256

    5e1aba3a2a5978bda25d93de427d0bc52c91882454ee61d989fd421f9dbfd5a9

  • SHA512

    f1fe16e8f77a0e3fd119bd0e6f9be932bb20084936418c1061b3acc2b8117693c48c027c3b079325f95d7c8910f290db175ea98ae2a19b9adf8c14fca91270a3

  • SSDEEP

    3072:VK1z13U6HzHoXRtmTUhQogNEmmFVcqq0GnDZT:VK7DDeKlogNEmmFVcqq0GnDZT

Score
10/10

Malware Config

Targets

    • Target

      794c313c7c28561d6fccf4f25029b5c9_JaffaCakes118

    • Size

      97KB

    • MD5

      794c313c7c28561d6fccf4f25029b5c9

    • SHA1

      b2eac7a32350aa37ef56bcc0168e46d9891caffd

    • SHA256

      5e1aba3a2a5978bda25d93de427d0bc52c91882454ee61d989fd421f9dbfd5a9

    • SHA512

      f1fe16e8f77a0e3fd119bd0e6f9be932bb20084936418c1061b3acc2b8117693c48c027c3b079325f95d7c8910f290db175ea98ae2a19b9adf8c14fca91270a3

    • SSDEEP

      3072:VK1z13U6HzHoXRtmTUhQogNEmmFVcqq0GnDZT:VK7DDeKlogNEmmFVcqq0GnDZT

    Score
    7/10
    • Changes its process name

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks