General

  • Target

    28a77c65cdc74a4302779e3b3e60726a_JaffaCakes118

  • Size

    2.6MB

  • Sample

    240509-gx6ekagg25

  • MD5

    28a77c65cdc74a4302779e3b3e60726a

  • SHA1

    af13131e90e1650847da26ac3f35fc2c1652f09b

  • SHA256

    df9715278e85f02c84781c49af4ca8cbd1fd4386bb4aa5226fd3d29deb34386b

  • SHA512

    6d3bc749fb5ecd0088edb26b0cb1dcb4bff604c1fd9f9731203a67ec6eb1c86de8f556b881748eba53a793de9c6ee8e3acc9cc37149674b57678afe2495f855a

  • SSDEEP

    49152:PyOZSAlUhx6v5GSciaJC63Uq8cWxMP8a/Yp5WaafcA46yoe+4PKhrlLooJRO:qOZSfhx6v7aJC6xea/umfJ46he+46LZQ

Malware Config

Targets

    • Target

      Pizza1.73/Pizza Pro 使用说明.pdf

    • Size

      1012KB

    • MD5

      b9da2b414177937114072702ea850b45

    • SHA1

      88de6a5a9a1b6043aeaa60bffc64d8e997ce73f8

    • SHA256

      bb37d49538b464139d8792cf936204df0dab600ead5bf7dbd4d1651c0651d438

    • SHA512

      56297fc5c24f6b2cdcaabc2928046be4845b70348acaff6e6c62d551e53eda137c7e01933d4518394c5d7dba063c0393dc8f324881a8a34aa5706b3654a2b6c6

    • SSDEEP

      24576:Ik7xEXd6K/X1b4wi/ygxVtoYGXUed2uVWgjDcwsfTvq78E/0:IKxEIcJfnkoPXV03gj4wY7t00

    Score
    1/10
    • Target

      Pizza1.73/Pizza.exe

    • Size

      127KB

    • MD5

      c986ab9ba58d5efd93c88fc755cd5d7c

    • SHA1

      678edb4cc8c936ffa8c689db68e831559231cff5

    • SHA256

      55badfc4e94ee33c133093e6ef78764065423b40297f1149931a0c84de576cb9

    • SHA512

      5971bf0cbd7ab7b0c2275cd6222d33e36dda36de2b90d48a1db23f3654ed418af6e2334feca0920fdebce1c2c775d247448b5986ad509869252915c38b2607e5

    • SSDEEP

      3072:JILKR5i61Z94ft0DfMOqbYb5hKaehgpEHcuY2MFVpSTwVThTH2MBwN7L3gQ8dr:iLvuQmDfMTYb5oaLpEHcuYlUaTt/mD8B

    Score
    7/10
    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Target

      Pizza1.73/PizzaGUI.exe

    • Size

      1.8MB

    • MD5

      433ccc496e4c2ca643ec425a796a577c

    • SHA1

      3367879ec0e2b80f9500c61de29cd8e8c4a08569

    • SHA256

      6375883bc88580aed7917ae96cdb02f7a94ba64ecc2046a31cd84fb7abc912a3

    • SHA512

      f95670f3b92c3dffba811aef996072265e470508126ecbe0c5c4b17cb8e19a8fb08cf5b6fe1449b82241e75bd4ae3457bbd516586d5621508385db058e98035c

    • SSDEEP

      24576:0g6ueV1/YgzNRX47/O9dPAZcSJI9b++PrIKjM0HUooVWq0JIC34kPn0cCo:PeV1AgzQVv+TIQ4BgF/v0+

    Score
    7/10
    • Checks BIOS information in registry

      BIOS information is often read in order to detect sandboxing environments.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks