General

  • Target

    83686f02f75edf71aebe8750717fc642_JaffaCakes118

  • Size

    126KB

  • Sample

    240402-ew4s8sgh75

  • MD5

    83686f02f75edf71aebe8750717fc642

  • SHA1

    3e397a38dfadc167993948262d2b6030439b7f14

  • SHA256

    a16711e388fd2917c761627f34467122df13cfc6b8c5c5e3fc86c192f0ed1918

  • SHA512

    87ec7ce502fa465e54c773317884280b9040fe653aa47d9bdba219e30b283e97b25a4b7c47ff35e575b8e2aa82ae7cca0f4311a6e1ff589bcc731b073577a8be

  • SSDEEP

    3072:6jVlyaL5JCrIpv04sKbstiEiJmP46aQyfPluesNb:yoCJCN4sKb8YmP46aQyfPluesNb

Score
10/10

Malware Config

Targets

    • Target

      83686f02f75edf71aebe8750717fc642_JaffaCakes118

    • Size

      126KB

    • MD5

      83686f02f75edf71aebe8750717fc642

    • SHA1

      3e397a38dfadc167993948262d2b6030439b7f14

    • SHA256

      a16711e388fd2917c761627f34467122df13cfc6b8c5c5e3fc86c192f0ed1918

    • SHA512

      87ec7ce502fa465e54c773317884280b9040fe653aa47d9bdba219e30b283e97b25a4b7c47ff35e575b8e2aa82ae7cca0f4311a6e1ff589bcc731b073577a8be

    • SSDEEP

      3072:6jVlyaL5JCrIpv04sKbstiEiJmP46aQyfPluesNb:yoCJCN4sKb8YmP46aQyfPluesNb

    Score
    7/10
    • Changes its process name

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks