General

  • Target

    268869824e02e592f866cb662d2f4fa5_JaffaCakes118

  • Size

    800KB

  • Sample

    240508-yy42kafh28

  • MD5

    268869824e02e592f866cb662d2f4fa5

  • SHA1

    c3308e1019d1b692bc3c9446eb2ec22791c4cb13

  • SHA256

    4324fb787a2cf92fddcc9e8bb97f299539d991b86b2e3ef618141e56278ee424

  • SHA512

    21182b55d530c4e2d216ad54659a2e84cd2460c0efcf2c6f5cd55c32a7ddf141205d05c133122e5a1343f071f1318e57cbc56589256e6a0848f0b0f2cbc30624

  • SSDEEP

    24576:X8BZK7VPFKdUoXOt7wdlhiGqrXTl/q97XZ9:MS7VPwdLXmwnhiGqL5A7Xv

Malware Config

Targets

    • Target

      AntiVCode.exe

    • Size

      758KB

    • MD5

      6e349614742fd0742a74615192eed77e

    • SHA1

      047a3f9ed8cf092878f2210afebc97b9d1cd825a

    • SHA256

      12167c5d134a756e1db2957fee6db1a4c7d697fd5ea243f7b3c0fddafed6c7ec

    • SHA512

      f0af367ef995d0524b9bf4c5e7d5f5c4606503a4983986af2e761f3bfc94f05c0fd9ccb58f93478e68a9421500fd3727890001ec9abb25a7d32356a99bbcd442

    • SSDEEP

      12288:mI0p4Br3+JzYK4wLDi2v2H1bFdFKy0mdRQiZ48hjTzljh04OPgTzi38gF4LoX7Wu:mvIr0YeAHlFSyT0zGTRd0c5W7

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Target

      GZIP.DLL

    • Size

      19KB

    • MD5

      d06d3ed9ad9b3a9bc644ffe4729a03cd

    • SHA1

      d58aa41517ca8765365ec498ab3be79a2a7bab80

    • SHA256

      c875f8b2db2a1c89ee76d6f2e4431be63d728e8d7edc2635df2d3ce1b9f8cb73

    • SHA512

      124c8d2f09026a8f64e5b3822b3c40a6282c93f914d15f8902bb76775ff0d59d4e395fdd79673865f3739562c6fa7ed23d1fa5dad6969954768188013e689fcb

    • SSDEEP

      384:JMTnIZMZlfoMfrPhyza/Ig3AEjctMQWxoy5XbkLWX:YtfoMjPhyzaDAe9QReXbz

    Score
    7/10
    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Target

      获取使用帮助.url

    • Size

      228B

    • MD5

      90d39efb56b16731fe419c602b413c98

    • SHA1

      5a1e5548156a4a8373a79ba9a4a89918e074fe1b

    • SHA256

      3c413d4da397a7136179bc86195eaf1709ef56d2e212d33920d15f9faabc04d7

    • SHA512

      6a25713692ac6cf5e61fc987ad6cbae3848d43972b9a65cb58f5783a45de031d4355818730dc41b202b84da4d858513378a164af3e5ad5101c1b5fd4941a2479

    Score
    1/10

MITRE ATT&CK Enterprise v15

Tasks