General

  • Target

    fbab06c7be78579e1500650928901804_JaffaCakes118

  • Size

    318KB

  • Sample

    240420-cax3fsdd77

  • MD5

    fbab06c7be78579e1500650928901804

  • SHA1

    6f2f2e904e85d19380be925eeaa5e22b30e74574

  • SHA256

    2fd5bb84ba958d02f5b02f6d16fccc68df6434204584aaabdc570cc7a631d243

  • SHA512

    875f9f1e52dbef553c61a854f7b33aa142adf63f81ab89f3b773050edb23d55d6a2ef92f71813779b27314cc3b3a50b82bdf49b428d8ceb92a113cb4fb1ec6c4

  • SSDEEP

    6144:iR2R8i4jwJq6W4Qmp6rD1rRBttWoPLj0Cw6HRxEJpz76VutsxEJmk:CG8jjwJqoQGe1nttdPLJfzEJF20XE

Malware Config

Targets

    • Target

      fbab06c7be78579e1500650928901804_JaffaCakes118

    • Size

      318KB

    • MD5

      fbab06c7be78579e1500650928901804

    • SHA1

      6f2f2e904e85d19380be925eeaa5e22b30e74574

    • SHA256

      2fd5bb84ba958d02f5b02f6d16fccc68df6434204584aaabdc570cc7a631d243

    • SHA512

      875f9f1e52dbef553c61a854f7b33aa142adf63f81ab89f3b773050edb23d55d6a2ef92f71813779b27314cc3b3a50b82bdf49b428d8ceb92a113cb4fb1ec6c4

    • SSDEEP

      6144:iR2R8i4jwJq6W4Qmp6rD1rRBttWoPLj0Cw6HRxEJpz76VutsxEJmk:CG8jjwJqoQGe1nttdPLJfzEJF20XE

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Subvert Trust Controls

1
T1553

Install Root Certificate

1
T1553.004

Modify Registry

1
T1112

Tasks