General

  • Target

    87e858856711b468d824de0d98516667_JaffaCakes118

  • Size

    72KB

  • Sample

    240810-2atgpsvhjf

  • MD5

    87e858856711b468d824de0d98516667

  • SHA1

    5b3aa2db9f26964ee889ec915f30e70490688664

  • SHA256

    203ad4b150dd2685f03d06cc7f5cfe1f6e4cfa398e0a5893d2fbe4324f84c5a8

  • SHA512

    25572f3946f26dcdfa4b4ce96e70eeb2d44f6cfdfdf74673eed7a804629f6ff8a444bac5f54252156524cdfcc3f7828af119188001f72fe8e718c97a233ea4fd

  • SSDEEP

    1536:CatEK4+KsiQwlSBWlnarADv2S/dQPrnd5jK1Vs:DE1jsTwlSBWdPbB/dErnnjK1Vs

Malware Config

Targets

    • Target

      87e858856711b468d824de0d98516667_JaffaCakes118

    • Size

      72KB

    • MD5

      87e858856711b468d824de0d98516667

    • SHA1

      5b3aa2db9f26964ee889ec915f30e70490688664

    • SHA256

      203ad4b150dd2685f03d06cc7f5cfe1f6e4cfa398e0a5893d2fbe4324f84c5a8

    • SHA512

      25572f3946f26dcdfa4b4ce96e70eeb2d44f6cfdfdf74673eed7a804629f6ff8a444bac5f54252156524cdfcc3f7828af119188001f72fe8e718c97a233ea4fd

    • SSDEEP

      1536:CatEK4+KsiQwlSBWlnarADv2S/dQPrnd5jK1Vs:DE1jsTwlSBWdPbB/dErnnjK1Vs

    • Checks installed software on the system

      Looks up Uninstall key entries in the registry to enumerate software on the system.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks