General

  • Target

    7a1d82dea116bd73e4c49016c60962a9_JaffaCakes118

  • Size

    97KB

  • Sample

    240401-zltkqsfe88

  • MD5

    7a1d82dea116bd73e4c49016c60962a9

  • SHA1

    1d5bb5fa9ee2bc81c5a2ed914f7ab73c5b59ee06

  • SHA256

    ccd16522ed3321468d528991574816d69b737503a438c906ada6aad15d29948e

  • SHA512

    4ec7ff5095020c7486cad0138778d457f3dc1207a3d0d7e874f14d78f5985d232594da5ea17e29454f8f5cad3182ba5b14757d0d7beccdbb5163f5c8a6cf933f

  • SSDEEP

    3072:VK1z13U6HzHoXRtmTUhQogmEmmFVcqq0GnDZT:VK7DDeKlogmEmmFVcqq0GnDZT

Score
10/10

Malware Config

Targets

    • Target

      7a1d82dea116bd73e4c49016c60962a9_JaffaCakes118

    • Size

      97KB

    • MD5

      7a1d82dea116bd73e4c49016c60962a9

    • SHA1

      1d5bb5fa9ee2bc81c5a2ed914f7ab73c5b59ee06

    • SHA256

      ccd16522ed3321468d528991574816d69b737503a438c906ada6aad15d29948e

    • SHA512

      4ec7ff5095020c7486cad0138778d457f3dc1207a3d0d7e874f14d78f5985d232594da5ea17e29454f8f5cad3182ba5b14757d0d7beccdbb5163f5c8a6cf933f

    • SSDEEP

      3072:VK1z13U6HzHoXRtmTUhQogmEmmFVcqq0GnDZT:VK7DDeKlogmEmmFVcqq0GnDZT

    Score
    7/10
    • Changes its process name

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks