General

  • Target

    fbd82621abed95a2d706f7e773b1dc08_JaffaCakes118

  • Size

    84KB

  • Sample

    240420-d8s2tsgc51

  • MD5

    fbd82621abed95a2d706f7e773b1dc08

  • SHA1

    9a46fdcb3f0f0fb64875e19c5747eeeffb8676bc

  • SHA256

    55673ff9eb3f24c116c958a5733a9e1f19abd8766fe82260342779d8ebe37d79

  • SHA512

    194053ee39554e7642da9bc38f660bc0c5f9cab03683cd5281f3b41f6e73e928015a3624b715f06b1389842184a652c2d6c8fd60d18f16cc827207235a8e7aa1

  • SSDEEP

    1536:yygg5smOIb70elcp7ZmK7FzpN121h6WbqZAM7lkxY738:6gbxox7tpin6cqZA8dj8

Malware Config

Targets

    • Target

      fbd82621abed95a2d706f7e773b1dc08_JaffaCakes118

    • Size

      84KB

    • MD5

      fbd82621abed95a2d706f7e773b1dc08

    • SHA1

      9a46fdcb3f0f0fb64875e19c5747eeeffb8676bc

    • SHA256

      55673ff9eb3f24c116c958a5733a9e1f19abd8766fe82260342779d8ebe37d79

    • SHA512

      194053ee39554e7642da9bc38f660bc0c5f9cab03683cd5281f3b41f6e73e928015a3624b715f06b1389842184a652c2d6c8fd60d18f16cc827207235a8e7aa1

    • SSDEEP

      1536:yygg5smOIb70elcp7ZmK7FzpN121h6WbqZAM7lkxY738:6gbxox7tpin6cqZA8dj8

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Discovery

Query Registry

1
T1012

Tasks