General

  • Target

    047f48f6b83b61c2639685c73de155af_JaffaCakes118

  • Size

    226KB

  • Sample

    240623-adaefs1drd

  • MD5

    047f48f6b83b61c2639685c73de155af

  • SHA1

    3924a816f7b63cedcd379fa345550bf1d32f7949

  • SHA256

    b9af5219cc435ea2eaa196b68fa1dba01fba28cbc210127ef4cbed5f7bd59944

  • SHA512

    7c8decacfb65cc7d077183413a539a3e132647e648bcac99c6a713f3de0d2cfc2055574f1d589157d70017af54ad0d01fede2c831df3024d0b03c9ce6841c041

  • SSDEEP

    6144:dy8Gngxu7bu28Bi6fxVwZkHx/jwx271U51QIb:dAngkbghOOJjQ51L

Malware Config

Targets

    • Target

      047f48f6b83b61c2639685c73de155af_JaffaCakes118

    • Size

      226KB

    • MD5

      047f48f6b83b61c2639685c73de155af

    • SHA1

      3924a816f7b63cedcd379fa345550bf1d32f7949

    • SHA256

      b9af5219cc435ea2eaa196b68fa1dba01fba28cbc210127ef4cbed5f7bd59944

    • SHA512

      7c8decacfb65cc7d077183413a539a3e132647e648bcac99c6a713f3de0d2cfc2055574f1d589157d70017af54ad0d01fede2c831df3024d0b03c9ce6841c041

    • SSDEEP

      6144:dy8Gngxu7bu28Bi6fxVwZkHx/jwx271U51QIb:dAngkbghOOJjQ51L

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks