General

  • Target

    048797edf023520257a8951989af07d6_JaffaCakes118

  • Size

    518KB

  • Sample

    240623-ah6nfs1frd

  • MD5

    048797edf023520257a8951989af07d6

  • SHA1

    b94014bc3251baeb0fa24beac0dccdd1acefe793

  • SHA256

    a53ba8fca2449802da2a345687b5a831bef42a2499e2f1a0c3cef07babdbfe4b

  • SHA512

    c942133b76832391f07f7c19d4ac3339827124cbd6fa5ce0f1e1d14585f9d352945906a9e726fa13e656274252aa0c63a0e3ef335534c944e04aff76255c3dbf

  • SSDEEP

    12288:9rVZhZyNm/Y0qa+eYi8qob1Q5W20oVVDnqw3P/:9r9Z4mAvFeYi871Q5Iqtzf/

Score
7/10

Malware Config

Targets

    • Target

      048797edf023520257a8951989af07d6_JaffaCakes118

    • Size

      518KB

    • MD5

      048797edf023520257a8951989af07d6

    • SHA1

      b94014bc3251baeb0fa24beac0dccdd1acefe793

    • SHA256

      a53ba8fca2449802da2a345687b5a831bef42a2499e2f1a0c3cef07babdbfe4b

    • SHA512

      c942133b76832391f07f7c19d4ac3339827124cbd6fa5ce0f1e1d14585f9d352945906a9e726fa13e656274252aa0c63a0e3ef335534c944e04aff76255c3dbf

    • SSDEEP

      12288:9rVZhZyNm/Y0qa+eYi8qob1Q5W20oVVDnqw3P/:9r9Z4mAvFeYi871Q5Iqtzf/

    Score
    7/10
    • Checks computer location settings

      Looks up country code configured in the registry, likely geofence.

    • Adds Run key to start application

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks