General

  • Target

    ba6e6945a76fadaaee302edbcc877607_JaffaCakes118

  • Size

    201KB

  • Sample

    240823-fjh7fawdra

  • MD5

    ba6e6945a76fadaaee302edbcc877607

  • SHA1

    4aab3c170491f7034c75902611399ea6d8894451

  • SHA256

    51b8c4383be4b168785413b3cb4006a8857ffac1663d44d600d1ec698c4fc252

  • SHA512

    a29e6c3da0bc23ea0d3db871f2ad81bb4a843e9175c5e383ca6eb5ea1b997f655c5a0cef0d59ff48dcaf72751dcced5a26ce41a96552234f39ebdc63c35e2b43

  • SSDEEP

    6144:mQ4K+/F9aDg9HMCHlIpXrTdSsaMQqSZi1:mQjS9ag9sp1ksaMQbI

Malware Config

Targets

    • Target

      ba6e6945a76fadaaee302edbcc877607_JaffaCakes118

    • Size

      201KB

    • MD5

      ba6e6945a76fadaaee302edbcc877607

    • SHA1

      4aab3c170491f7034c75902611399ea6d8894451

    • SHA256

      51b8c4383be4b168785413b3cb4006a8857ffac1663d44d600d1ec698c4fc252

    • SHA512

      a29e6c3da0bc23ea0d3db871f2ad81bb4a843e9175c5e383ca6eb5ea1b997f655c5a0cef0d59ff48dcaf72751dcced5a26ce41a96552234f39ebdc63c35e2b43

    • SSDEEP

      6144:mQ4K+/F9aDg9HMCHlIpXrTdSsaMQqSZi1:mQjS9ag9sp1ksaMQbI

    • UPX packed file

      Detects executables packed with UPX/modified UPX open source packer.

    • Enumerates connected drives

      Attempts to read the root path of hard drives other than the default C: drive.

    • Writes to the Master Boot Record (MBR)

      Bootkits write to the MBR to gain persistence at a level below the operating system.

MITRE ATT&CK Enterprise v15

Tasks