General

  • Target

    ab90746b1dbe7b4406f7eb47dd53ac79_JaffaCakes118

  • Size

    3.7MB

  • Sample

    240614-1eh14a1alr

  • MD5

    ab90746b1dbe7b4406f7eb47dd53ac79

  • SHA1

    5f1360552549b6307d203b3639004613d6458a4b

  • SHA256

    4b1c61205b74992adc8046b4a09191d4bb77bfecd2bfb746cb3fd7057eaa76dd

  • SHA512

    9897fb0ffa5d67e38caa70ba6d630c1b867e7c5835c8369f5bbb7f67976ab8b878f26be59624bfcd31850ac978fe372bddc28fa595913d864d9ce4f5b2818d75

  • SSDEEP

    98304:ySA6mqfNLW6AlKdk///bcns2TAjWy6P1rQMHsDZGP:xARqQ6snIf86TtNP

Malware Config

Targets

    • Target

      AngryMailer_EN_Free/Angry Mailer - Free Mass Email Sender - Fifty Thousand - Hundred Thousand Letters Everyday.url

    • Size

      55B

    • MD5

      bd0f88c6ff29e5f3be39155689651ef3

    • SHA1

      8a29c03a09c8c9407e459bdad78dfc17eb753030

    • SHA256

      1533f80cb46ae4bfa9ce77a5fb26436dc79ea70df5b67951bcced86edecf3b1a

    • SHA512

      b74b7315e8fe66d3130f295d3c019bf852d5b6e03f191edbd7e69055ba821f0dc2ac1b5b1a03ba62c08a46c160ac1c0769ae4c5309a5258d4b066f358c6445ed

    Score
    1/10
    • Target

      AngryMailer_EN_Free/AngryMailer_EN_Free.exe

    • Size

      3.1MB

    • MD5

      fddbcd17e11c284de21c1f29f4470833

    • SHA1

      de3f42d3b6f96c55054a261df379c8bf25816dd2

    • SHA256

      bd65e0e058b6ebc0c448ed75cedbc6e3245402944f0c0df821c3e4a4b3a4db3c

    • SHA512

      1f9701f4f5e4af370355f03e97dcb45a53e063284c4fa3b2cc0f22cb5669d6d5372801331ec0b667f26f7b2a774ac2b5cec570e2f40e7852d768a8a7dd4c0221

    • SSDEEP

      98304:iL5iynH8AM5xTZBFOANWi5nYZOfLSHDvJgESEo/X:IiynERReqfo

    • Loads dropped DLL

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

    • Target

      AngryMailer_EN_Free/AngryMailer_Help_EN.pdf

    • Size

      1.1MB

    • MD5

      4a4f5e53e486ecbf946af444a748d8a1

    • SHA1

      56aeb8fb86889b9a4784d8458ec981864d0126f5

    • SHA256

      7d222f47a5559786e68bcccaa8375063a6901cd04320c537ebc5ef3b7ff4f869

    • SHA512

      873d4abe3395a1437f2729356fe05d497a96dc7eb4da096969e21f75236bc07b6a01888e88870c1abd0f7e853b740173d00d3f2735470a95477991fde6ea5bd9

    • SSDEEP

      24576:DMjiA7wwVzjpkPkGOn652wEi1jLenrLQin:WRjs5ZEwjLKrB

    Score
    1/10

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Modify Registry

2
T1112

Discovery

System Information Discovery

2
T1082

Query Registry

1
T1012

Tasks