General

  • Target

    83fda36cc377663d1fd052862000acc5_JaffaCakes118

  • Size

    151KB

  • Sample

    240402-feaphaha3w

  • MD5

    83fda36cc377663d1fd052862000acc5

  • SHA1

    95447278c50eaaccc7cc2dd05c1d16103dd5fc7f

  • SHA256

    51c9039169e4e92a244f18d7acb02a4c4a85cac5728f37b7983664241be10d80

  • SHA512

    66b2ab24de8c58028c9f630e9f343221745392ac84ea61012335b84a3c382674a4b1434991cfbc7857d467d51b28736f8c51e6f398feb9991e4776fd0a2414da

  • SSDEEP

    3072:JW6BK9tS1aRG4dKP6h//CFH+mrThPaLEne7rNb:c64i6XCYmrThPaLEne7rNb

Score
10/10

Malware Config

Targets

    • Target

      83fda36cc377663d1fd052862000acc5_JaffaCakes118

    • Size

      151KB

    • MD5

      83fda36cc377663d1fd052862000acc5

    • SHA1

      95447278c50eaaccc7cc2dd05c1d16103dd5fc7f

    • SHA256

      51c9039169e4e92a244f18d7acb02a4c4a85cac5728f37b7983664241be10d80

    • SHA512

      66b2ab24de8c58028c9f630e9f343221745392ac84ea61012335b84a3c382674a4b1434991cfbc7857d467d51b28736f8c51e6f398feb9991e4776fd0a2414da

    • SSDEEP

      3072:JW6BK9tS1aRG4dKP6h//CFH+mrThPaLEne7rNb:c64i6XCYmrThPaLEne7rNb

    Score
    7/10
    • Changes its process name

    • Modifies Watchdog functionality

      Malware like Mirai modifies the Watchdog to prevent it restarting an infected system.

    • Reads system routing table

      Gets active network interfaces from /proc virtual filesystem.

MITRE ATT&CK Enterprise v15

Tasks