General

  • Target

    011ae556b95e6a98b6370702b34bde34_JaffaCakes118

  • Size

    168KB

  • Sample

    240426-s4mftaef92

  • MD5

    011ae556b95e6a98b6370702b34bde34

  • SHA1

    598ee09a3c2c7a60b9e41669df5518fd748f4350

  • SHA256

    51c3c6b0e13e75a122fe300f8655a87055e7e5b6d4a4b36093fbe6d642e1784a

  • SHA512

    99068604118cf5cb3784a4d962a66af26e55ed5c47af1e0797b2d33529b3ba6b729509e576b98a77e3a90403299d29e02b2763f583f15ce6f2a03e8ca31851ca

  • SSDEEP

    3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9tb0:5SeOQdaZNxtk8cqhSxvHY9

Malware Config

Targets

    • Target

      011ae556b95e6a98b6370702b34bde34_JaffaCakes118

    • Size

      168KB

    • MD5

      011ae556b95e6a98b6370702b34bde34

    • SHA1

      598ee09a3c2c7a60b9e41669df5518fd748f4350

    • SHA256

      51c3c6b0e13e75a122fe300f8655a87055e7e5b6d4a4b36093fbe6d642e1784a

    • SHA512

      99068604118cf5cb3784a4d962a66af26e55ed5c47af1e0797b2d33529b3ba6b729509e576b98a77e3a90403299d29e02b2763f583f15ce6f2a03e8ca31851ca

    • SSDEEP

      3072:cx6SZwEgOQtbap1jZNFnYo6w68cqhS2iJvHLzxq9tb0:5SeOQdaZNxtk8cqhSxvHY9

    • EvilQuest

      EvilQuest family.

    • EvilQuest payload

    • Launch Agent

      Adversaries may create or modify launch agents to repeatedly execute malicious payloads as part of persistence.

    • Launch Daemon

      Adversaries may create or modify Launch Daemons to execute malicious payloads as part of persistence. Launch Daemons are plist files used to interact with Launchd, the service management framework used by macOS.

MITRE ATT&CK Enterprise v15

Tasks