General

  • Target

    aec67ff7cd461cb19996003a1a4d5ef2_JaffaCakes118

  • Size

    727KB

  • Sample

    240615-rdp9cashrf

  • MD5

    aec67ff7cd461cb19996003a1a4d5ef2

  • SHA1

    ef03be600c8a8bddd1c2f15d087c694ed4860a63

  • SHA256

    be236d2f5d44d260e5a77b11f41c798150e39da45f04cf1a3a4947606f93a761

  • SHA512

    45b729a8ecf3de47603ac0553c00d77ddbbfe21c26f296eaa675762d449be85395620ada7b329dbf98673f388c70ebf8224ea83004d858aed8880a4167773c22

  • SSDEEP

    12288:DwECaUglPnFsk7P0UahDyDT1SBRXjIjpzDcOWnCqPR:DwEC70qkgUahDuMR0cO8JPR

Score
6/10

Malware Config

Targets

    • Target

      aec67ff7cd461cb19996003a1a4d5ef2_JaffaCakes118

    • Size

      727KB

    • MD5

      aec67ff7cd461cb19996003a1a4d5ef2

    • SHA1

      ef03be600c8a8bddd1c2f15d087c694ed4860a63

    • SHA256

      be236d2f5d44d260e5a77b11f41c798150e39da45f04cf1a3a4947606f93a761

    • SHA512

      45b729a8ecf3de47603ac0553c00d77ddbbfe21c26f296eaa675762d449be85395620ada7b329dbf98673f388c70ebf8224ea83004d858aed8880a4167773c22

    • SSDEEP

      12288:DwECaUglPnFsk7P0UahDyDT1SBRXjIjpzDcOWnCqPR:DwEC70qkgUahDuMR0cO8JPR

    Score
    6/10
    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Matrix ATT&CK v13

Persistence

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Defense Evasion

Pre-OS Boot

1
T1542

Bootkit

1
T1542.003

Discovery

Query Registry

1
T1012

Peripheral Device Discovery

1
T1120

System Information Discovery

1
T1082

Tasks