General

  • Target

    9fa42f989e97c106d5054596fa90fbe2_JaffaCakes118

  • Size

    878KB

  • Sample

    240611-1nw93sshpp

  • MD5

    9fa42f989e97c106d5054596fa90fbe2

  • SHA1

    a6c370410add577a014f9303dce8a508b537b0d7

  • SHA256

    573f4e04384a26e3f8e75d6c1f941a90c0cd8fa530923ba9eb7f61308b2d600a

  • SHA512

    8c6ab398294de0c817972c6f4e4e4236f9351277861df8d0652083eb9ee94a69533e16eb49b7a415f4a869a8f9318a132ce6afbfa104a317e8b946e7666fe729

  • SSDEEP

    24576:xIa7MvMoIceaNc+IBDnugZhefKsZKnOIl:xg0GewZKnfl

Malware Config

Targets

    • Target

      9fa42f989e97c106d5054596fa90fbe2_JaffaCakes118

    • Size

      878KB

    • MD5

      9fa42f989e97c106d5054596fa90fbe2

    • SHA1

      a6c370410add577a014f9303dce8a508b537b0d7

    • SHA256

      573f4e04384a26e3f8e75d6c1f941a90c0cd8fa530923ba9eb7f61308b2d600a

    • SHA512

      8c6ab398294de0c817972c6f4e4e4236f9351277861df8d0652083eb9ee94a69533e16eb49b7a415f4a869a8f9318a132ce6afbfa104a317e8b946e7666fe729

    • SSDEEP

      24576:xIa7MvMoIceaNc+IBDnugZhefKsZKnOIl:xg0GewZKnfl

    • Deletes itself

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks