General

  • Target

    1285a9bfb493b49915c11109d811838e_JaffaCakes118

  • Size

    84KB

  • Sample

    240626-s7dyvatgkq

  • MD5

    1285a9bfb493b49915c11109d811838e

  • SHA1

    af7092842a92c8a079733dd0cfa40ac150fb4abf

  • SHA256

    7ce4b245b447a6386316b37a4e6b5d884071e1884b114b0b7ed46d99c03b5a41

  • SHA512

    1b8fecae1a6623e865bf302d0cb89bdb824675d6309a1e042fb4ae8956b20b6e2f0579d8e1bc6ce84e4ca9288f5d0d15f624c4adec3026363b2327e453e3e70a

  • SSDEEP

    1536:KXNXdENOxnBLH0mVek5O1hlV8YxcQfZWqW9yeZul56uxNNfNgqSOqLhL3KNqen:KdtVnZHhc8PqlazKUL6

Malware Config

Targets

    • Target

      1285a9bfb493b49915c11109d811838e_JaffaCakes118

    • Size

      84KB

    • MD5

      1285a9bfb493b49915c11109d811838e

    • SHA1

      af7092842a92c8a079733dd0cfa40ac150fb4abf

    • SHA256

      7ce4b245b447a6386316b37a4e6b5d884071e1884b114b0b7ed46d99c03b5a41

    • SHA512

      1b8fecae1a6623e865bf302d0cb89bdb824675d6309a1e042fb4ae8956b20b6e2f0579d8e1bc6ce84e4ca9288f5d0d15f624c4adec3026363b2327e453e3e70a

    • SSDEEP

      1536:KXNXdENOxnBLH0mVek5O1hlV8YxcQfZWqW9yeZul56uxNNfNgqSOqLhL3KNqen:KdtVnZHhc8PqlazKUL6

    • Executes dropped EXE

    • VMProtect packed file

      Detects executables packed with VMProtect commercial packer.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks