General

  • Target

    f23f5d948da06aa635e857c45f51b1d3_JaffaCakes118

  • Size

    191KB

  • Sample

    240416-ajzxasea91

  • MD5

    f23f5d948da06aa635e857c45f51b1d3

  • SHA1

    45bac6ff404239088aae28c08822b514839ad9cc

  • SHA256

    759de916c0a92b30cb1eda46e88625f67001381556671d21ecb3250556a952b4

  • SHA512

    4ccd03ea9f988cfa0fc89978e0be4f7859997bef6b6e8ab8e0f8d8b2fa801c6bca73983e7158b6be36e6d28a71bb6b8aeff550240654a2f8a4b38267ad17cc26

  • SSDEEP

    3072:4bgzmNjak6WO9096HM0XU+aDe5UEjmIlmijI7rUGimMflst2mry0aEg:qgNUn+aC1meyUGimMflS2mG0a

Malware Config

Targets

    • Target

      f23f5d948da06aa635e857c45f51b1d3_JaffaCakes118

    • Size

      191KB

    • MD5

      f23f5d948da06aa635e857c45f51b1d3

    • SHA1

      45bac6ff404239088aae28c08822b514839ad9cc

    • SHA256

      759de916c0a92b30cb1eda46e88625f67001381556671d21ecb3250556a952b4

    • SHA512

      4ccd03ea9f988cfa0fc89978e0be4f7859997bef6b6e8ab8e0f8d8b2fa801c6bca73983e7158b6be36e6d28a71bb6b8aeff550240654a2f8a4b38267ad17cc26

    • SSDEEP

      3072:4bgzmNjak6WO9096HM0XU+aDe5UEjmIlmijI7rUGimMflst2mry0aEg:qgNUn+aC1meyUGimMflS2mG0a

    • ACProtect 1.3x - 1.4x DLL software

      Detects file using ACProtect software.

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Installs/modifies Browser Helper Object

      BHOs are DLL modules which act as plugins for Internet Explorer.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks